pam_unix logging patch

From: Ilmar S. Habibulin (ilmar@ints.ru)
Date: 03/31/01 

Date: Sat, 31 Mar 2001 22:17:31 +0400 (MSD)
From: "Ilmar S. Habibulin" <ilmar@ints.ru>
To: <security@freebsd.org>

Here is a patch for log user logins and logouts, that i made in 15 minutes
while studying login&PAM. Why not to use LOG_AUTH and pam_system_log()
with other usefull pam functions to log different events?
And i don't understand why not to move half of login stuff to pam modules,
or even use only pam without ifdefs?

PS. patch is against -current.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Relevant Pages

  • Re: 2.6.28, rlimits, performance and debian etch
    ... Apparently the pam library in Debian etch initializes the limits ... Maybe the patch should be reverted (but then it may be ... I think we just revert it for now. ...
    (Linux-Kernel)
  • Re: WMF FIX
    ... Pam wrote: ... > Thanks Phil and Rosanne for your exceptional input... ... that might have been traceable to the patch. ... involved a router losing Internet access, and I didn't feel qualified to ...
    (microsoft.public.security)
  • Re: PAM patches, iteration 4
    ... this replaces my earlier patches. ... > I'd welcome having PAM experts examine them closely. ... I just committed a 3-line patch to login.c to call pam_setcred. ... All the PAM modules in the base system just return PAM_SUCCESS, ...
    (FreeBSD-Security)
  • Re: AIXs LDAP with PAM and Expired password
    ... Here are the logs of sshd As per the logs pasted below, ... before PAM even gets involved. ... I believe the patch below will make it work (you'll need the previous ...
    (comp.security.ssh)