Package: libpam-ldap
Version: 184-8.6
Severity: wishlist
On my netboot desktop farm, I used to have both pam_ldap and pam_unix
enabled. I turned off pam_unix to workaround something or other.
Only later did I realize this also meant I have no logs of when a user
has successfully logged in, because pam_ldap has no equivalent of
2013-03-01T13:47:07+11:00 rental-su1-c20-92188 xdm[1818]:
pam_unix(xdm:session): session opened for user p92188 by p92188(uid=0)
I was about to roll a workaround (like, re-adding "session optional
pam_unix.so"), but I noticed you're already patching pam_ldap.so to
log failure to write to shadowLastChanged.
How do you feel about adding a similar patch to log an opened session?
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
