RE: PAM & Auth
From: Sturges, Jonathan D, ALABS (jdsturges_at_att.com)
Date: 03/15/04
- Previous message: Harbi, Fatima: "PAM & Auth"
- Maybe in reply to: Harbi, Fatima: "PAM & Auth"
- Next in thread: LeBlanc, Brian: "RE: PAM & Auth"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 15 Mar 2004 07:51:35 -0600 To: "Harbi, Fatima" <Fatima.Harbi@qwest.com>, <focus-sun@securityfocus.com>
Take a look at the Linux-PAM project. They have many more PAM modules than Solaris. Their page is at http://www.kernel.org/pub/linux/libs/pam/.
The Linux "pam_rootok" module might do what you want, when used with the "sufficient" flag, stacked above the pam_radius_auth entry.
Some of the Linux modules, including pam_rootok, compile just fine under Solaris. So try building it and see if it works for you.
good luck,
Jonathan
The opinions expressed here are mine alone and not those of my employer.
> -----Original Message-----
> From: Harbi, Fatima [mailto:Fatima.Harbi@qwest.com]
> Sent: Tuesday, March 09, 2004 12:17 PM
> To: focus-sun@securityfocus.com
> Subject: PAM & Auth
>
>
> Hi,
>
> How do I limit the following in my pam.conf to users other
> than root? In other words how do i make sure this is not
> applied to root?
>
> # Authentication management
>
> login auth requisite pam_radius_auth.so.1
>
> I found something that said i needed to add "ignore_root"
> (see below) but that didn't work - any other suggestions?
>
> login auth requisite pam_radius_auth.so.1 ignore_root
>
> Thanks -
>
>
> > - Internal Use Only - Disclose and Distribute only to Qwest
> Employees and authorized persons working for Qwest.
> Disclosure outside of Qwest is prohibited without authorization.
> >
>
- Previous message: Harbi, Fatima: "PAM & Auth"
- Maybe in reply to: Harbi, Fatima: "PAM & Auth"
- Next in thread: LeBlanc, Brian: "RE: PAM & Auth"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
