proxmox-mirrors/pve-access-control
1
0
Fork 0
mirror of https://git.proxmox.com/git/pve-access-control synced 2025-07-24 14:57:58 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix #1670: change PAM service name to project specific name

Browse Source 
Instead of 'common-auth' use 'proxmox-ve-auth', this way
users can override PAM authentication settings via
`/etc/pam.d/proxmox-ve-auth`.

If the file does not exist, pam will use `/etc/pam.d/other`
which by default behaves like `common-auth`.

Note that this *can* be different from directly using
`common-auth` *if* a user has actually modified
`/etc/pam.d/other` for some reason.

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>
This commit is contained in:
Wolfgang Bumiller 2020-11-20 11:05:34 +01:00 committed by Thomas Lamprecht
parent 54d312f350
commit 01f191c8c4
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
PVE/Auth/PAM.pm
View File

@ -27,7 +27,7 @@ sub authenticate_user {
# user (www-data) need to be able to read /etc/passwd /etc/shadow
die "no password\n" if !$password;
my $pamh = new Authen::PAM('common-auth', $username, sub {
my $pamh = new Authen::PAM('proxmox-ve-auth', $username, sub {
my @res;
while(@_) {
my $msg_type = shift;