Re: [Exim] Exim and PAM, again

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Nigel Metheringham
Date:  
À: Richard Mayhew
CC: Christi Alice Scarborough, exim-users
Sujet: Re: [Exim] Exim and PAM, again
splash@??? said:
> use the file other :)


um... you presumably have a lax system where other allows things to 
authenticate... this is my other file (stock RH 6.2)
  #%PAM-1.0
  auth     required       /lib/security/pam_deny.so
  account  required       /lib/security/pam_deny.so
  password required       /lib/security/pam_deny.so
  session  required       /lib/security/pam_deny.so


I'd suggest as a start copy /etc/pam.d/login -> /etc/pam.d/exim
Then remove lines related to securetty, nologin & console (plus
anything similar which is not going to be relevant to exim
authentication). That should probably leave you with one line per
access type (auth account password session), probably all the same -
for example /lib/security/pam_pwdb.so

If you just have a single /etc/pam.conf file do the same sort of thing
but replicate the lines starting with login and then change the prefix
to exim.

    Nigel.


-- 
[ - Opinions expressed are personal and may not be shared by VData - ]
[ Nigel Metheringham                  Nigel.Metheringham@??? ]
[ Phone: +44 1423 850000                         Fax +44 1423 858866 ]