PAM Module Arguments

Previous page
Table of content
Next page


PAM uses arguments to pass information to a pluggable module during authentication for a particular module type. These arguments allow the PAM configuration files for particular programs to use a common PAM module, but in different ways. For example, the pam_userdb.so module uses secrets stored in a Berkeley DB file to authenticate the user. Berkeley DB is an open-source database system designed to be embedded in many applications to track information. The module takes a db argument, specifying the Berkeley DB file name to use, which can be different for different services. So, the pam_userdb.so line in a PAM configuration file looks like this:

auth   required  /lib/security/pam_userdb.so db=path/to/file

Invalid arguments are ignored and do not otherwise affect the success or failure of the PAM module. When an invalid argument is passed, an error is usually written to the /var/log/messages file. However, since the reporting method is controlled by the PAM module, the module must be written correctly in order to log the error to this file.


Previous page
Table of content
Next page
Official Red Hat Linux Administrator's Guide
Official Red Hat Linux Administrators Guide
ISBN: 0764516957
EAN: 2147483647
Year: 2002
Pages: 278
Authors: Red Hat Inc
BUY ON AMAZON
Interprocess Communications in Linux: The Nooks and Crannies
Network Security Architectures
C++ How to Program (5th Edition)
Java How to Program (6th Edition) (How to Program (Deitel))
Microsoft Office Visio 2007 Step by Step (Step By Step (Microsoft))
Quartz Job Scheduling Framework: Building Open Source Enterprise Applications
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy