Robert,
I don't want to offend anyone, but I think that now pam_pkcs11 is a big mess.
Some of the features are available when nss is used and some are not.
Some parameters are taken from extenal nss configuration some from
pam_pkcs11 configuration.
You need to manage the module in two different
Hello Ludovic,
1. The new version prompt some annoying messages in X... This is
related to the new pam_prompt addition when HAVE_SECURITY_PAM_EXT_H is
defined.
2. I've look at the code. It seems like you added the whole nss into
the source... I don't understand why... You can use the external
Alon Bar-Lev wrote:
2. I've look at the code. It seems like you added the whole nss into
the source... I don't understand why... You can use the external
library files.
No, I definately did not add all of NSS, it used NSS from a shared
library. I'm not sure what code you think is NSS. What
Hello Ludovic,
Something is different with this version.
When I unlock xsession I see messages like:
Please insert smart card or enter user name
Must press OK
Smart card inserted
Must press OK
Welcome name
Must press OK
This is very annoying...
What was changed?
On 6/11/07, Ludovic Rousseau
On 11/06/07, Alon Bar-Lev [EMAIL PROTECTED] wrote:
BTW: We can shrink up the code if next version will use pkcs11-helper :)
Please, send a patch.
I just hope it will not collide with the NSS support. I imagine NSS
and pkcs11-helper are orthogonal features, aren't they?
bye
--
Dr. Ludovic
On 6/11/07, Ludovic Rousseau [EMAIL PROTECTED] wrote:
This new version contains the patches from RedHat to use NSS instead
of OpenSSL and many other improvements they made. See the
ChangeLog.svn file for an exhaustive list.
Hi!
Great!
I am curios, why did you switch to NSS?
BTW: We can
Alon Bar-Lev wrote:
On 6/11/07, Ludovic Rousseau [EMAIL PROTECTED] wrote:
This new version contains the patches from RedHat to use NSS instead
of OpenSSL and many other improvements they made. See the
ChangeLog.svn file for an exhaustive list.
Hi!
Great!
I am curios, why did you
Thanks!
NSS seems to be overkill for most requirements...
But I understand the maintenance argument, but I don't think
maintaining NSS is simpler thank OpenSSL... :)
BTW: Slotevents and multi provider is offered by pkcs11-helper as
well, so solution may be much simpler :)
Best Regards,
Alon