[14936] in Kerberos
Re: Are the MIT daemons (telnetd etc) PAM aware ?
daemon@ATHENA.MIT.EDU (Jeffrey Altman)
Wed Aug 1 22:25:47 2001
From: jaltman@watsun.cc.columbia.edu (Jeffrey Altman)
Date: 2 Aug 2001 02:07:15 GMT
Message-ID: <9kackj$hse$1@newsmaster.cc.columbia.edu>
To: kerberos@MIT.EDU
Telnet Authentication does not use PAM. It negotiates the credentials
as part of the networking protocol. Passwords are never sent to the
host and therefore there is nothing to pass to PAM.
If Telnet Authentication is not used, then the login process is called
and if login uses PAM, then PAM will be used when the userid and password
are prompted for by login.
In article <2a497a.0108011608.596ba6fe@posting.google.com>,
Rich Jamieson <Richard.Jamieson@db.com> wrote:
: Hi,
:
: I've seen a number of postings talking about PAM modules for kerberos.
:
: Are the MIT daemons (telnetd etc) PAM aware ?
: Can I get MIT's telnetd (out of the box) to call a pam module ?
:
: Or when people talk about PAM support for kerberos do they just mean that it
: is possible to get the standard (NON MIT) daemons to call a MIT kerberos PAM module.
:
: Hope i explained that OK !
:
: regards
:
: richJ
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 Beta available
The Kermit Project @ Columbia University includes Secure Telnet and FTP
http://www.kermit-project.org/ using Kerberos, SRP, and
kermit-support@kermit-project.org OpenSSL. SSH soon to follow.
