5.1 beta2 still in trouble with pam_ldap
Dag-Erling Smorgrav
des at ofug.org
Fri May 23 12:54:49 PDT 2003
Ruslan Ermilov <ru at FreeBSD.org> writes:
> Works for the generic case, but not for this particular example.
> Just run "shutdown -k now" locally, and watch how funny the login
> session looks. I don't think we're leaking something here. ;)
> Hm, or maybe this is just the problem with pam_nologin(8) not
> respecting the "no_warn" option?
hmm
I think you're right - in the nologin case, information leak isn't an
issue. We should change it to requisite. I need to go through the
policies and change "sufficient" to "binding" anyway, so I'll take
care of it once the freeze lifts.
DES
--
Dag-Erling Smorgrav - des at ofug.org
More information about the freebsd-current
mailing list