Timothy J. Miller wrote:
I pulled pam_pkcs11 from the OpenSC SVN and compiled/installed it,
configured it to use libcoolkeypk11.so, and added it to my common-auth
PAM stack as sufficient. Since I'm lazy, I configured it with
--libdir=/lib. Everything works *except* gksu/gksudo, and I've logged a
bug against it with Ubuntu; based on info for a similar bug with
pam_krb5, it may be a sudo bug instead (sudo, however, works fine).
I've not tested KDE at all.
I'm currently working on pam_pkcs11 to add on some better syslogging,
Cool, it would be nice to be able to read a log that is not disappearing while
trying to figure out what is going wrong.
Speaking of which are you actually getting pam_pkcs11 to let you login with a
cac while using coolkey's pkcs11 lib?
I am having a fault near what I think is the end of the transactions, which we
think is related to the card logout stuff. I am trying to use pam_pkcs11-0.5.3
so you might have a better version from svn.
changing the crl_online and crl_offline setting algorithms, and I'm
going to make a stab at adding OCSP support. In my copious spare time,
of course. :)
-- Tim
--
Todd Denniston
Crane Division, Naval Surface Warfare Center (NSWC Crane)
Harnessing the Power of Technology for the Warfighter
_______________________________________________
Muscle mailing list
Muscle@lists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle
