Dallas N Antley <dna+pgsql(at)clas(dot)ufl(dot)edu> writes:
> I think I know why pam authentication fails with the pam_unix*
> modules, but would appreciate your opinion.
I think you've proven that the particular PAM modules you are testing
with are useless for programs executing as non-root, but that doesn't
mean the entire concept is broken. Look around ... there are lots of
PAM modules (or at least that's the theory).
BTW, what are those "door_info()" and "door_call()" calls shown in the
truss output? Could it be that those are supposed to get the PAM code
into a higher authorization level?
regards, tom lane
In response to
pgsql-admin by date
|Next:||From: Dallas N Antley||Date: 2004-08-17 02:06:49|
|Subject: Re: 7.4.3 and PAM authentication failures |
|Previous:||From: Christopher Browne||Date: 2004-08-16 22:52:42|
|Subject: Re: [ADMIN] Pseudo-Off-topic-survey: Opinions about future of Postgresql(MySQL)?|