I am trying to set up PAM authentication but it isn't working. This is
on a NetBSD 5.1 system. The first issue I hit was that the pam library
wasn't being compiled in. Calling configure with --enable-pam does
cause it to check and it even creates a PAM_LIBS variable set to "-lpam"
but it never uses it. I was able to fix this in the NetBSD package
system by adding "LFFLAGS+=-lpam" when the auth-pam variable in that
system was set but this should probably be fixed in jabberd2.
That got me to the point that PAM was being called but I still can't get
it to work. Has anyone got this working and can they help me figure it
out? Here is the relevant sections from c2s.xml:
<local>
<id
realm='vex.net'
pemfile='/VEX/certs/mail.vex.net.cert'>vex.net
</id>
<ip>0.0.0.0</ip>
<port>5222</port>
<ssl-port>5223</ssl-port>
<require-starttls/>
<verify-mode>7</verify-mode>
</local>
and...
<authreg>
<path>/usr/pkg/lib/jabberd</path>
<module>pam</module>
<mechanisms>
<traditional>
<plain/>
</traditional>
</mechanisms>
<ssl-mechanisms>
<traditional>
<plain/>
</traditional>
</ssl-mechanisms>
</authreg>
</c2s>
I suspect that this is a PAM issue at this point but I can't be sure.
Hopefully someone else has solved this already.
--
D'Arcy J.M. Cain
System Administrator, Vex.Net
http://www.Vex.Net/