Subject: Re: integrating PAM
To: Jason R Thorpe <>
From: Greywolf <>
List: current-users
Date: 01/23/2003 14:21:32
On Thu, 23 Jan 2003, Jason R Thorpe wrote:

[JRT: [ from /etc/hypothetical_auth_scheme.conf ]

<drop object="penny">


Jason, I think you've just hit on something.

Perhaps we need to implement an /etc/auth.conf -- or, more accurately,
a getauth() routine to look there and determine which auth to follow.
It would simplify this whole thing at a probably unnoticeable performance
hit (by and large -- depending on your platform, your mileage may vary,
but I can't imagine a noticeable hit!).


1.  Look in /etc/auth.conf to figure out the authentication to use.
2.  Call the authenticator.
3.  Get the authentication information
4.  Authenticate the user, and continue to retrieve name information
	from the nss.

I'm sure I'm missing something here, but I don't think I'm as far off
the mark as all that.  Am I?

My other computer runs NetBSD.