With PAM, a normal user could use his own password for authentication without being setuid-root. That's a default behavior on Linux-PAM.
For NetBSD and FreeBSD, an additional PAM module is required.
NetBSD: The PAM module is in pkgsrc: security/pam-pwauth_suid
FreeBSD: Visit this page: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=253073 Download the attachment and extrct it to /usr/ports/security.
This is now merged into master of this date.
It is disabled in FreeBSD and Dragonfly by default since you need to go out and do some custom changes.
It is enabled in Linux and NetBSD by default, so you will need to install pam development libraries.
On debian/ubuntu type systems this is libpam-dev.
For Redhat and derivatives it is pam-devel.
For NetBSD, you must install (or build) pam-pwauth_suid.
For FreeBSD, see the link in the OP.
Log in to post a comment.
With PAM, a normal user could use his own password for authentication without being setuid-root.
That's a default behavior on Linux-PAM.
For NetBSD and FreeBSD, an additional PAM module is required.
NetBSD:
The PAM module is in pkgsrc:
security/pam-pwauth_suid
FreeBSD:
Visit this page:
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=253073
Download the attachment and extrct it to /usr/ports/security.
This is now merged into master of this date.
It is disabled in FreeBSD and Dragonfly by default since you need to go out and do some custom changes.
It is enabled in Linux and NetBSD by default, so you will need to install pam development libraries.
On debian/ubuntu type systems this is libpam-dev.
For Redhat and derivatives it is pam-devel.
For NetBSD, you must install (or build) pam-pwauth_suid.
For FreeBSD, see the link in the OP.
Last edit: Jon Trulson 2021-05-22