Ralf S. Engelschall wrote:
On Tue, Feb 14, 2006, Doug Summers wrote:
[...]
+ pam_cfgloc=/etc/pam.conf
+ break
+ '[' -d /etc/pam.conf ']'
+ '[' -f /etc/pam.conf ']'
++ cat /etc/pam.conf
++ head -1
++ grep '^#*[ ]*other'
++ awk '{ print $4; }'
+ mod=
[...]
Ah, ok. I see. The problem on AIX is that an *empty* /etc/pam.conf
exists and this way no "other" line can be found in it and as a result
the filesystem location of the PAM DSOs cannot be found. Hmmm... this
means that pam.spec actually requires a platform specific hack just
for AIX. I've tried to fix the "pam" module in OpenPKG-CURRENT. Please
retry with pam-0-20060214.src.rpm or higher from OpenPKG-CURRENT. It now
should out-of-the-box determine the PAM parameters on AIX and if you
install something like "openssh" the PAM entries should be correct now.
Thanks for your support and feedback, Doug.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
Sorry, Ralph - I thought you only wanted the OpenPKG pam entries. Here's
the default /etc/pam.conf that comes on AIX 5.3. This format is nearly
the exact same as HPUX:
#
# Authentication
#
ftp auth required /usr/lib/security/pam_aix
imap auth required /usr/lib/security/pam_aix
login auth required /usr/lib/security/pam_aix
rexec auth required /usr/lib/security/pam_aix
rlogin auth sufficient /usr/lib/security/pam_rhosts_auth
rlogin auth required /usr/lib/security/pam_aix
rsh auth required /usr/lib/security/pam_rhosts_auth
snapp auth required /usr/lib/security/pam_aix
su auth sufficient /usr/lib/security/pam_allowroot
su auth required /usr/lib/security/pam_aix
telnet auth required /usr/lib/security/pam_aix
OTHER auth required /usr/lib/security/pam_prohibit
#
# Account Management
#
ftp account required /usr/lib/security/pam_aix
login account required /usr/lib/security/pam_aix
rexec account required /usr/lib/security/pam_aix
rlogin account required /usr/lib/security/pam_aix
rsh account required /usr/lib/security/pam_aix
su account sufficient /usr/lib/security/pam_allowroot
su account required /usr/lib/security/pam_aix
telnet account required /usr/lib/security/pam_aix
OTHER account required /usr/lib/security/pam_prohibit
#
# Password Management
#
login password required /usr/lib/security/pam_aix
passwd password required /usr/lib/security/pam_aix
rlogin password required /usr/lib/security/pam_aix
su password required /usr/lib/security/pam_aix
telnet password required /usr/lib/security/pam_aix
OTHER password required /usr/lib/security/pam_prohibit
#
# Session Management
#
ftp session required /usr/lib/security/pam_aix
imap session required /usr/lib/security/pam_aix
login session required /usr/lib/security/pam_aix
rexec session required /usr/lib/security/pam_aix
rlogin session required /usr/lib/security/pam_aix
rsh session required /usr/lib/security/pam_aix
snapp session required /usr/lib/security/pam_aix
su session required /usr/lib/security/pam_aix
telnet session required /usr/lib/security/pam_aix
OTHER session required /usr/lib/security/pam_prohibit
______________________________________________________________________
The OpenPKG Project www.openpkg.org
User Communication List openpkg-users@openpkg.org