]> git.ipfire.org Git - people/ms/ipfire-3.x.git/blobdiff - pam/pam.d/system-auth
projects / people / ms / ipfire-3.x.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Move all packages to root.
[people/ms/ipfire-3.x.git] / pam / pam.d / system-auth
diff --git a/pam/pam.d/system-auth b/pam/pam.d/system-auth
new file mode 100644 (file)
index 0000000..0fa221b
--- /dev/null
+++ b/pam/pam.d/system-auth
@@ -0,0 +1,23 @@
+#%PAM-1.0
+auth        required      pam_env.so
+auth        sufficient    pam_unix.so nullok try_first_pass
+auth        requisite     pam_succeed_if.so uid >= 500 quiet
+auth        sufficient    pam_ldap.so use_first_pass
+auth        required      pam_deny.so
+
+account     required      pam_unix.so broken_shadow
+account     sufficient    pam_localuser.so
+account     sufficient    pam_succeed_if.so uid < 500 quiet
+account     [default=bad success=ok user_unknown=ignore] pam_ldap.so
+account     required      pam_permit.so
+
+password    requisite     pam_cracklib.so try_first_pass retry=3
+password    sufficient    pam_unix.so sha512 shadow nullok try_first_pass use_authtok
+password    sufficient    pam_ldap.so use_authtok
+password    required      pam_deny.so
+
+session     optional      pam_keyinit.so revoke
+session     required      pam_limits.so
+session     [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
+session     required      pam_unix.so
+session     optional      pam_ldap.so
Michael's tree of IPFire 3.x.