Hey Wes - I totally hadn't thought of that. I could see using PAM to allow us to add supplemental "friend" factors.. but if we used it to replace both friend and kerberos, wouldn't that break the kerberos ticket retrieval stuff?
Liam Quoting Wesley Craig <[email protected]>: > Why not just switch to using PAM? cosign supports PAM... > > :wes > > On 03 Mar 2011, at 12:07, Liam Hoekenga wrote: >> I think that having an option to fall through the factors (like PAM) >> would do it. As far as I can tell, the current behavior is to match >> usernames that match certain regexes to specific password mechanisms, >> and that usernames are only tried against their matching password >> mechanism. I guess I'm asking for a switch that would try a username >> against all password mechanisms until it found one that match, >> returning a failure if none did. > > !DSPAM:4d6fe88d160751903312405! > > > > ------------------------------------------------------------------------------ What You Don't Know About Data Connectivity CAN Hurt You This paper provides an overview of data connectivity, details its effect on application quality, and explores various alternative solutions. http://p.sf.net/sfu/progress-d2d _______________________________________________ Cosign-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/cosign-discuss
