From owner-freebsd-security@FreeBSD.ORG Fri Sep 16 17:29:58 2011 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F40F7106564A for ; Fri, 16 Sep 2011 17:29:57 +0000 (UTC) (envelope-from delphij@delphij.net) Received: from anubis.delphij.net (anubis.delphij.net [IPv6:2001:470:1:117::25]) by mx1.freebsd.org (Postfix) with ESMTP id D867C8FC08 for ; Fri, 16 Sep 2011 17:29:57 +0000 (UTC) Received: from delta.delphij.net (drawbridge.ixsystems.com [206.40.55.65]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by anubis.delphij.net (Postfix) with ESMTPSA id 60F8B14CCC; Fri, 16 Sep 2011 10:29:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=delphij.net; s=anubis; t=1316194197; bh=+TMBEcVdCx33MHRp2+L1w/wsyKe9c+9+tP2CNAZxFf8=; h=Message-ID:Date:From:Reply-To:MIME-Version:To:CC:Subject: References:In-Reply-To:Content-Type:Content-Transfer-Encoding; b=Wv6z/fCJ/Euf5kA7cuCyRU5m2ayVDdieWsBAAtCfEXdyzow5EMVzqTwUqRwiNEzo9 UidmWiFqFhKFqpfOdWbxg/VVbbv9lalVI+6hBaWCsUNt4q6V6XOEL1+252WT7Jp6sr IrcKzRWY0Av8WmlrX6eGA78JE3VhXSPjpMbjAZFw= Message-ID: <4E738794.4050908@delphij.net> Date: Fri, 16 Sep 2011 10:29:56 -0700 From: Xin LI Organization: The FreeBSD Project MIME-Version: 1.0 To: =?UTF-8?B?RGFnLUVybGluZyBTbcO4cmdyYXY=?= References: <86boukbk8s.fsf@ds4.des.no> In-Reply-To: <86boukbk8s.fsf@ds4.des.no> OpenPGP: id=3FCA37C1; url=http://www.delphij.net/delphij.asc Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Cc: freebsd-security@freebsd.org Subject: Re: PAM modules X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: d@delphij.net List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Sep 2011 17:29:58 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 09/16/11 08:05, Dag-Erling Smørgrav wrote: > We currently have a number of PAM modules in ports, and while some > of them are specific to certain third-party software, many aren't. > I believe we would benefit from importing at least some of these > into base. My question is: which ones? LDAP? (We do currently have some work on LDAP integration but not sure if the community would be interested -- this would need an import of stripped down OpenLDAP) and modifies OpenSSH to support public key in LDAP directory. Cheers, - -- Xin LI https://www.delphij.net/ FreeBSD - The Power to Serve! Live free or die -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (FreeBSD) iQEcBAEBCAAGBQJOc4eUAAoJEATO+BI/yjfBUFgH/1+fWilKMu/4YJu0X2hUpDJI EvOuG1Mx481eXAaTV+yfVaHwGs039EQIgJpk18CCC+UbCOV4kG0B0XpK5D3VdOPE nHoXB38YiiyBe+LVYg3u1YPrjPAoULK2ih4qMOki6Wbtw8EqV344BNd0a70joY+z JTnNsfJQcMKAO8RpppPxuf/yy6goRcQSMUmDCvxBiOS923vZu641kyBEzyFeC+GU BJjLTXxcBQ5V9XNGgHmp7g4nwHPNwi0aOPs6Gudgj7u3hKKEkcY//Irdac+chopF St4AJBCffsdl49TbQMYKUvTSIyUb5YeI8ixtFzwhhdGUZLEPDOvtOJNooCd1x/w= =VRQC -----END PGP SIGNATURE-----