1 |
Apparently, though unproven, at 04:54 on Wednesday 08 December 2010, Mark |
2 |
David Dumlao did opine thusly: |
3 |
|
4 |
> Hi. |
5 |
> I'm usually slow at updating my gentoo machine, and I think I was |
6 |
> behind by about a month from last update. Anyways, I noticed that the |
7 |
> recent pambase-20101024 has pam_permit optional on for auth, account |
8 |
> and password in /etc/pam.d/system-auth. |
9 |
> |
10 |
> That didn't sound real neat, so Iooked it up in the manual and it says |
11 |
> "very dangerous, use with extreme caution." |
12 |
> |
13 |
> Following their advice, I look up pam_permit and try to understand why |
14 |
> anyone would put it on by default, but the google hits I get on |
15 |
> pam_permit are very terse. |
16 |
> |
17 |
> What does pam_permit do when set to optional for auth, account, |
18 |
> password and session? Clearly I don't want my pam to start letting in |
19 |
> everybody, but I doubt the gentoo team would either, so maybe I'm just |
20 |
> misunderstanding. |
21 |
> |
22 |
> In the meantime I didn't allow it in. |
23 |
|
24 |
|
25 |
The pam maintainer usually blogs about his changes: |
26 |
|
27 |
http://blog.flameeyes.eu |
28 |
|
29 |
|
30 |
-- |
31 |
alan dot mckinnon at gmail dot com |