From ajk@tempest.waterspout.com  Tue Jan 11 19:15:00 2000
Return-Path: <ajk@tempest.waterspout.com>
Received: from tempest.waterspout.com (tempest.waterspout.com [208.13.56.2])
	by hub.freebsd.org (Postfix) with ESMTP
	id 29BF5154C1; Tue, 11 Jan 2000 19:14:53 -0800 (PST)
	(envelope-from ajk@tempest.waterspout.com)
Received: (from ajk@localhost)
	by tempest.waterspout.com (8.9.3/8.9.3) id WAA02411;
	Tue, 11 Jan 2000 22:14:45 -0500 (EST)
	(envelope-from ajk)
Message-Id: <200001120314.WAA02411@tempest.waterspout.com>
Date: Tue, 11 Jan 2000 22:14:45 -0500 (EST)
From: ajk@waterspout.com
Sender: ajk@tempest.waterspout.com
Reply-To: ajk@waterspout.com
To: FreeBSD-gnats-submit@freebsd.org
Cc: mark@grondar.za, phantom@freebsd.org
Subject: [PATCH] pam_ssh examples for /etc/pam.conf
X-Send-Pr-Version: 3.2

>Number:         16076
>Category:       conf
>Synopsis:       [PATCH] pam_ssh examples for /etc/pam.conf
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    markm
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Tue Jan 11 19:20:01 PST 2000
>Closed-Date:    Sat Feb 23 03:16:00 UTC 2008
>Last-Modified:  Sat Feb 23 03:16:00 UTC 2008
>Originator:     Andrew J. Korty
>Release:        FreeBSD 4.0-CURRENT i386
>Organization:
Waterspout Communications, Inc.
>Environment:

FreeBSD tempest.waterspout.com 4.0-CURRENT FreeBSD 4.0-CURRENT #24:
Sat Dec  4 08:11:45 EST 1999
root@tempest.waterspout.com:/usr/src/sys/compile/TEMPEST  i386

>Description:

Recently, several entries were added to /etc/pam.conf to make PAM
more functional out of the box.  Why not add these example entries
(commented out) for using the pam_ssh module that comes with the
OpenSSH port with XDM/KDM/GDM?

>How-To-Repeat:

Apply this patch and uncomment the indicated lines to activate the
pam_ssh module.

>Fix:

--- pam.conf.orig	Tue Jan 11 17:52:47 2000
+++ pam.conf	Tue Jan 11 17:55:50 2000
@@ -24,6 +24,14 @@
 
 # XDM is difficult; it fails or moans unless there are modules for each
 # of the four management groups; auth, account, session and password.
+#
+# Uncomment the following three lines to use the pam_ssh module that
+# comes with the OpenSSH port (/usr/ports/security/openssh).
+#
+#xdm 	auth	requisite	pam_cleartext_pass_ok.so
+#xdm	auth	sufficient	pam_ssh.so			try_first_pass
+#xdm	session	optional	pam_ssh.so
+
 xdm	auth	required	pam_unix.so
 #xdm	auth	sufficient	pam_kerberosIV.so		try_first_pass
 xdm	account	required	pam_unix.so			try_first_pass

>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->markm 
Responsible-Changed-By: nbm 
Responsible-Changed-When: Fri Jul 14 07:22:09 PDT 2000 
Responsible-Changed-Why:  
markm said he'd look at this. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=16076 
State-Changed-From-To: open->closed 
State-Changed-By: linimon 
State-Changed-When: Sat Feb 23 03:15:33 UTC 2008 
State-Changed-Why:  
Apparently these days the code is in /etc/pam.d/xdm. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=16076 
>Unformatted:
