[prev in list] [next in list] [prev in thread] [next in thread]
List: freebsd-hackers
Subject: Adding an "expose_authtok" option to pam_exec(8)
From: Thomas Munro <munro () ip9 ! org>
Date: 2018-07-07 12:21:22
Message-ID: CADLWmXVWxLf_bospnoNqs+prztZtpeRF1t1Dim_q8ijp6mizpA () mail ! gmail ! com
[Download RAW message or body]
Hello,
On Linux, pam_exec.so has an option "expose_authtok" which causes the
authentication token to be sent to the executed program's stdin.
That's quite a useful bridge to languages other than C that want to
check the password or use it to decrypt something etc, since otherwise
you have to provide some kind of .so wrapper providing the PAM C API
to get at that. I wrote a patch to implement that and posted it here:
https://reviews.freebsd.org/D16171 . I'd be grateful for any
feedback.
Thanks,
Thomas Munro
_______________________________________________
freebsd-hackers@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic