Re: 5.1 beta2 still in trouble with pam_ldap
From: Dag-Erling Smorgrav (des_at_ofug.org)
Date: 05/23/03
- Previous message: Ruslan Ermilov: "Re: 5.1 beta2 still in trouble with pam_ldap"
- In reply to: Ruslan Ermilov: "Re: 5.1 beta2 still in trouble with pam_ldap"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Ruslan Ermilov <ru@FreeBSD.org> Date: Fri, 23 May 2003 21:54:45 +0200
Ruslan Ermilov <ru@FreeBSD.org> writes:
> Works for the generic case, but not for this particular example.
> Just run "shutdown -k now" locally, and watch how funny the login
> session looks. I don't think we're leaking something here. ;)
> Hm, or maybe this is just the problem with pam_nologin(8) not
> respecting the "no_warn" option?
hmm
I think you're right - in the nologin case, information leak isn't an
issue. We should change it to requisite. I need to go through the
policies and change "sufficient" to "binding" anyway, so I'll take
care of it once the freeze lifts.
DES
-- Dag-Erling Smorgrav - des@ofug.org _______________________________________________ freebsd-current@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-current To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"
- Previous message: Ruslan Ermilov: "Re: 5.1 beta2 still in trouble with pam_ldap"
- In reply to: Ruslan Ermilov: "Re: 5.1 beta2 still in trouble with pam_ldap"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
