mirror of
https://github.com/Zeckmathederg/glfs.git
synced 2025-02-03 23:07:23 +08:00
index PAM & Shadow
git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@3225 af4574ff-66df-0310-9fd7-8a98e5e911e0
This commit is contained in:
Larry Lawrence
parent
92204ad14a
commit
4ede7d32f5
@ -18,6 +18,8 @@
|
||||
</sect1info>
|
||||
<?dbhtml filename="linux_pam.html"?>
|
||||
<title>Linux-PAM-&Linux_PAM-version;</title>
|
||||
<indexterm zone="Linux_PAM">
|
||||
<primary sortas="a-Linux_PAM">Linux_PAM</primary></indexterm>
|
||||
|
||||
<sect2>
|
||||
<title>Introduction to <application>Linux-<acronym>PAM</acronym></application>
|
||||
@ -152,28 +154,39 @@ for a list of various modules available.</para>
|
||||
<sect2>
|
||||
<title>Contents</title>
|
||||
|
||||
<para>The <application>Linux-<acronym>PAM</acronym></application> package
|
||||
contains <command>unix_chkpwd</command>,
|
||||
<filename class="libraryfile">libpam</filename> libraries and
|
||||
<acronym>PAM</acronym> modules.</para>
|
||||
|
||||
</sect2>
|
||||
<segmentedlist>
|
||||
<segtitle>Installed Program</segtitle>
|
||||
<segtitle>Installed Libraries</segtitle>
|
||||
<segtitle>Installed Directory</segtitle>
|
||||
<seglistitem>
|
||||
<seg>unix_chkpwd and pam_tally</seg>
|
||||
<seg>libpam, libpamc and libpma_misc</seg>
|
||||
<seg>/lib/security</seg>
|
||||
</seglistitem>
|
||||
</segmentedlist>
|
||||
|
||||
<sect2><title>Description</title>
|
||||
<variablelist>
|
||||
<bridgehead renderas="sect3">Short Descriptions</bridgehead>
|
||||
<?dbfo list-presentation="list"?>
|
||||
|
||||
<sect3><title>unix-chkpwd</title>
|
||||
<para><command>unix_chkpwd</command> checks user passwords that are stored
|
||||
in read protected databases.</para></sect3>
|
||||
<varlistentry id="unix_chkpwd">
|
||||
<term><command>unix_chkpwd</command></term>
|
||||
<listitem><para>checks user passwords that are stored
|
||||
in read protected databases.</para>
|
||||
<indexterm zone="Linux_PAM unix_chkpwd">
|
||||
<primary sortas="b-unix_chkpwd">unix_chkpwd</primary></indexterm>
|
||||
</listitem>
|
||||
</varlistentry>
|
||||
|
||||
<sect3><title>libpam libraries</title>
|
||||
<para><filename class="libraryfile">libpam</filename> libraries provide the
|
||||
interfaces between applications and the <acronym>PAM</acronym> modules.</para>
|
||||
</sect3>
|
||||
|
||||
<sect3><title><acronym>PAM</acronym> modules</title>
|
||||
<para><acronym>PAM</acronym> modules are the Pluggable Authentication Modules
|
||||
installed in <filename class='directory'>/lib/security/</filename>.</para>
|
||||
</sect3>
|
||||
<varlistentry id="libpam">
|
||||
<term><filename class='libraryfile'>libpam.so</filename></term>
|
||||
<listitem><para> provide the interfaces between applications and the <acronym>PAM</acronym> modules.</para>
|
||||
<indexterm zone="Linux_PAM libpam">
|
||||
<primary sortas="c-libpam">libpam.so</primary></indexterm>
|
||||
</listitem>
|
||||
</varlistentry>
|
||||
</variablelist>
|
||||
|
||||
</sect2>
|
||||
|
||||
|
||||
@ -12,6 +12,8 @@
|
||||
</sect1info>
|
||||
<?dbhtml filename="shadow.html"?>
|
||||
<title>Shadow-&shadow-version;</title>
|
||||
<indexterm zone="shadow">
|
||||
<primary sortas="a-Shadow">Shadow</primary></indexterm>
|
||||
|
||||
<!--
|
||||
<sect2>
|
||||
@ -105,7 +107,7 @@ command sets the tty's that allow logins through <acronym>PAM</acronym>.</para>
|
||||
<title>Configuring <application>Linux-<acronym>PAM</acronym></application> to work
|
||||
with <application>Shadow</application></title>
|
||||
|
||||
<sect3><title>Config files</title>
|
||||
<sect3 id="pam.d"><title>Config files</title>
|
||||
<para><filename>/etc/pam.d/login</filename>,
|
||||
<filename>/etc/pam.d/passwd</filename>,
|
||||
<filename>/etc/pam.d/su</filename>,
|
||||
@ -113,6 +115,10 @@ with <application>Shadow</application></title>
|
||||
<filename>/etc/pam.d/useradd</filename>, and
|
||||
<filename>/etc/pam.d/chage</filename> –
|
||||
alternatively, <filename>/etc/pam.conf</filename></para>
|
||||
<indexterm zone="shadow pam.d">
|
||||
<primary sortas="e-pam.d">/etc/pam.d/</primary></indexterm>
|
||||
<indexterm zone="shadow pam.d">
|
||||
<primary sortas="e-pam.conf">/etc/pam.conf</primary></indexterm>
|
||||
</sect3>
|
||||
|
||||
<sect3><title>Configuration Information</title>
|
||||
@ -202,17 +208,17 @@ password required pam_unix.so md5 shadow use_authtok
|
||||
# End /etc/pam.d/passwd
|
||||
<command>EOF</command></userinput></screen>
|
||||
|
||||
<note><para>At this point, you should do a simple test to see if
|
||||
<warning><para>At this point, you should do a simple test to see if
|
||||
<application>Shadow</application> is
|
||||
working as expected. Open another term and login as a user, then su to
|
||||
to root. If you do not see any errors, then all is well and you should
|
||||
proceed with the rest of the configuration. If you did
|
||||
receive errors, stop now and double check the above configuration files
|
||||
manually. If you cannot find, and fix the error, you should recopile
|
||||
manually. If you cannot find, and fix the error, you should recompile
|
||||
shadow replacing <envar>--with-libpam</envar> with
|
||||
<envar>--without-libpam</envar> in the above
|
||||
instructions. If you fail to do this and the errors remain, you
|
||||
will be unable to log into your system.</para></note>
|
||||
will be unable to log into your system.</para></warning>
|
||||
|
||||
<para>Currently, <filename>/etc/pam.d/other</filename> is configured to
|
||||
allow anyone with an account on the machine to use programs
|
||||
|
||||
Loading…
Reference in New Issue
Block a user