Re: replace PAM with BSD Auth (was: slow su? [solved])

To: NetBSD-current Users's Discussion List <current-users%netbsd.org@localhost>
Subject: Re: replace PAM with BSD Auth (was: slow su? [solved])
From: David Holland <dholland-current%netbsd.org@localhost>
Date: Mon, 22 Aug 2011 02:27:14 +0000

On Thu, Aug 18, 2011 at 05:28:02PM -0700, Greg A. Woods wrote:
 > > > My opinion remains that PAM ought to go, but that's not trivial...
 > > 
 > > And replace it with what?
 > 
 > PAM could be replaced with BSD Auth, as was discussed long ago.

bsdauth doesn't support the same authentication module interface (or,
AIUI, anything close to it) so it won't do. There are some PAM modules
in pkgsrc, for example, and other third-party ones that aren't but
that someone probably uses.

Also, as far as I know bsdauth doesn't fix the fundamental structural
problem that login should be *unprivileged* until a login occurs...

-- 
David A. Holland
dholland%netbsd.org@localhost

Follow-Ups:
- Re: replace PAM with BSD Auth (was: slow su? [solved])
  - From: Greg A. Woods
- Re: replace PAM with BSD Auth (was: slow su? [solved])
  - From: John Nemeth

References:
- slow su?
  - From: Ian D. Leroux
- Re: slow su? [solved]
  - From: David Holland
- Re: slow su? [solved]
  - From: Ian D. Leroux
- Re: slow su? [solved]
  - From: David Holland
- Re: slow su? [solved]
  - From: Christos Zoulas
- replace PAM with BSD Auth (was: slow su? [solved])
  - From: Greg A. Woods

Prev by Date: Re: gcc-4.5.3 has broken most of pkgsrc for me
Next by Date: Re: slow su? [solved]
Previous by Thread: replace PAM with BSD Auth (was: slow su? [solved])
Next by Thread: Re: replace PAM with BSD Auth (was: slow su? [solved])
Indexes:

Home | Main Index | Thread Index | Old Index