Subject: Re: Sane /etc/pam.d defaults (was: Pam and Current)
To: None <current-users@NetBSD.org>
From: Sascha Retzki <firstname.lastname@example.org>
Date: 06/23/2005 06:59:33
On Wed, Jun 22, 2005 at 10:31:42PM +0200, Bernd Ernesti wrote:
> On Wed, Jun 22, 2005 at 04:10:05PM -0400, Christos Zoulas wrote:
> > On Jun 22, 9:50pm, email@example.com (Bernd Ernesti) wrote:
> > -- Subject: Sane /etc/pam.d defaults (was: Pam and Current)
> > | Ok, /usr/lib/security needs to exists, but for /etc/pam.d we really need
> > | to add same sane default configuration compiled in if /etc/pam.d doesn't
> > | exists at all or it is empty (maybe also if the requested file is missing).
> > |
> > | We will have more an more reports coming in after 3.0 is out if that isn't
> > | fixed before.
> > Look is supposed to be fixing postinstall to handle it.
> No, not in postinstall. This should be be fixed in another way, like compiled
> in default values.
Fully acknowledged. PAM looks "interesting", but it kind of fears a lot
out of me if I read "bug-reports" like "I could login as root without giving
a password" or alike ;-)
And yeah it would be great if that would be fixed before 3.0