Date: Mon, 28 May 2001 12:18:05 +1000 From: Peter Jeremy <peter.jeremy@alcatel.com.au> To: Mark Murray <mark@grondar.za> Cc: arch@FreeBSD.ORG Subject: Re: PAM, S/Key and authentication schemes. Message-ID: <20010528121804.Q89950@gsmx07.alcatel.com.au> In-Reply-To: <200105251240.f4PCeO612402@gratis.grondar.za>; from mark@grondar.za on Fri, May 25, 2001 at 02:42:40PM %2B0200 References: <200105251240.f4PCeO612402@gratis.grondar.za>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2001-May-25 14:42:40 +0200, Mark Murray <mark@grondar.za> wrote: >I'd like to properly PAM-ize the things that need it, and simplify >where possible and where appropriate. In most cases, this means >gutting out the convoluted logic if favour of pam _only_. Sounds good. The only danger area I can see is the need to check root password to get to single-user if the console is not secure. This needs to work even if (and especially when) the system is hosed. I wouldn't like to see init become dependent on the dynamic loader and various PAM libraries in this case. Peter To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010528121804.Q89950>