Menu
▾
▴
pam-mysql-general — A general list for PAM-MYSQL, subscribe if you want to ask anything :)
You can subscribe to this list here.
| 2000 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
(2) |
Dec
(1) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2001 |
Jan
(1) |
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(1) |
| 2002 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
(3) |
Jul
|
Aug
(2) |
Sep
(4) |
Oct
|
Nov
(6) |
Dec
(4) |
| 2003 |
Jan
(5) |
Feb
(4) |
Mar
(1) |
Apr
(2) |
May
(4) |
Jun
(7) |
Jul
(1) |
Aug
(3) |
Sep
(5) |
Oct
(11) |
Nov
(7) |
Dec
(5) |
| 2004 |
Jan
(3) |
Feb
|
Mar
|
Apr
(2) |
May
(1) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(6) |
Nov
|
Dec
|
| 2005 |
Jan
|
Feb
|
Mar
(3) |
Apr
|
May
|
Jun
(11) |
Jul
(14) |
Aug
(2) |
Sep
(20) |
Oct
(4) |
Nov
|
Dec
|
| 2006 |
Jan
(9) |
Feb
|
Mar
(5) |
Apr
(4) |
May
(3) |
Jun
(4) |
Jul
(4) |
Aug
(1) |
Sep
(3) |
Oct
(9) |
Nov
(16) |
Dec
(12) |
| 2007 |
Jan
(24) |
Feb
(12) |
Mar
(5) |
Apr
(23) |
May
(3) |
Jun
(14) |
Jul
(3) |
Aug
(6) |
Sep
(4) |
Oct
(2) |
Nov
|
Dec
|
| 2008 |
Jan
|
Feb
(1) |
Mar
(1) |
Apr
(16) |
May
(10) |
Jun
(8) |
Jul
(24) |
Aug
(11) |
Sep
(2) |
Oct
|
Nov
(2) |
Dec
|
| 2009 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
(1) |
Dec
(1) |
| 2010 |
Jan
(5) |
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
(2) |
Sep
|
Oct
|
Nov
|
Dec
|
| 2011 |
Jan
(1) |
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: James O'K. <jo...@mi...> - 2003-10-15 16:09:34
|
Florian Verdet said: > The question that remains is, if I should > commit it to the existing pam_mysql source or start as a new project. You should have permissions to cvs commit. If it doesn't work, let me know. There's no sense forking this. -james |
|
From: Florian V. <flo...@un...> - 2003-10-15 14:11:10
|
Hi Sem, Hi all others, Who contributed until now, you'll have to look at the 'CREDITS' file=20 and the source file itself in the source tree. Projects state: I can only say: "It works !" ;-) And it is much less delicate to get to work than NSS-MySQL. (ok - there are other goals...) Plans... huh..? :o) Ok, I did some big work on PAM-MySQL (and in relation with NSS-MySQL). But I didn't commit it yet - because of lack of time (I'll have a (temporarly) last exam next Monday...). I'll do it in November. The question that remains is, if I should=20 commit it to the existing pam_mysql source or start as a new project. This for the actual state. For the future, I see this: I'm sure, there are some bugfixes to do on my work - I'll do them. If I can find some time for developping more little service=20 programs or scripts, I'll do it also... I don't expect much from the other pam_mysql developers because there=20 was not a lot of hacking in the last months.=20 But if they feel hacky - everybody would greatly apreciate it ! For you, Sem: If you want to do some work/support, download the work I've done and test it - I'm missing feedback until now :-/ If you want to write code, I recommend you to wait until I've committed my "thing" to some official site (SourceForge) and then, we could discuss further hacks. You can find infos about my "thing" in this mailing lists archives. Every comment is welcome ! greetings to Russia, blers sal=FCds, CU, ________________________________________ \| Sergey Matveychuk <se...@ci...> ha scrit=20 | in/als Wed, 15 Oct 2003 01:35:54 +0400 il seguaint: |Hello! | |I've just subscribed and I'd like to know what a state of the project? |What plans? Who contributed? | _________=20 Florian Verdet _goto president Linuxbourg - LUG Fribourg, CH GnuPG: fvg.zapto.org/informatica/gpg.php . |
|
From: Sergey M. <se...@ci...> - 2003-10-14 21:36:00
|
Hello! I've just subscribed and I'd like to know what a state of the project? What plans? Who contributed? -- Sem. |
|
From: Jason T. <JT...@nb...> - 2003-09-29 16:05:55
|
I have a few database applications that use mysql as their backend. = Each app has it's own users table etc. Can I use pam to get each of = these apps to athenticate through Active Directory? |
|
From: James O'K. <jo...@mi...> - 2003-09-11 03:00:17
|
Florian Verdet said: > I also wanted to know your thoughts on what to do with that work: > Would you like that it is committed to the existing pam_mysql module ? > Or should I register it as a fresh SourceForge project ? I added you as an admin member of the project, so you should be able to make whatever changes you need to. I haven't had time to look at anything you've sent, and I don't expect I'll have time in the near future, so do what you think is best in terms of cvs commits and new releases, etc. -james |
|
From: Mark C. <ma...@re...> - 2003-09-10 05:08:13
|
On Wed, 10 Sep 2003 07:36 am, Florian Verdet wrote: > Since last mail, I : > - wrote a Mini-HowTo set up MySQL, PAM-MySQL and NSS-MySQL. > - also did some testings on (RedHat) machines at our University. > I set up a server machine and some clients (with some system directories > mounted by NFS, thus only the config files had to be copied) > - wrote a program to add a new user to the database (useradd_mysql) > (written in C, using some funtions directly in the pam_mysql sources) > - began setting up pam_mysql at our LUG local (it will also be employed > on a ~8 node cluster). Awesome work, well done. I can't advise on how to proceed as I don't really know anything about this project other than I use pam_mysql and after what you've done will probably base all my servers on your PAM/NSS work. I feel I/someone should at least acknowledge your eforts and if you don't hear anything supportive from the core developers here, if there are any, then you might have to start a new project... I'll sign up at least :-) --markc |
|
From: Florian V. <flo...@un...> - 2003-09-09 21:37:12
|
Hi all, Maybe you remember...=20 I wrote to you (list) nearly one month ago to request your comments and=20 your opinion on the work I did on the pam_mysql module. I also wanted to know your thoughts on what to do with that work: Would you like that it is committed to the existing pam_mysql module ? Or should I register it as a fresh SourceForge project ? Since last mail, I : - wrote a Mini-HowTo set up MySQL, PAM-MySQL and NSS-MySQL. - also did some testings on (RedHat) machines at our University. I set up a server machine and some clients (with some system directories= =20 mounted by NFS, thus only the config files had to be copied) - wrote a program to add a new user to the database (useradd_mysql) (written in C, using some funtions directly in the pam_mysql sources) - began setting up pam_mysql at our LUG local (it will also be employed=20 on a ~8 node cluster). On Thursday, I'll have the final presentation of my Bachelor project. This will conclude my work on this subject until I have a bit more time for progging. I'll also give you access to the projects documentation (TeX/PDF/PS) and the slides used for my presentation (OOo Impress ; only in french) I really want to hear from you !!! What do you think would be the best ? Commit it to pam_mysql or register it as a new sourceforge project ? If I don't get any answers until Monday, I'll do what I want ! ;-) HomePage of my Bachelor Project: [ http://fvg.zapto.org/informatica/tbsc/welcome.php ] looking forward, sincerly, blers sal=FCds, _________=20 Florian Verdet _goto GnuPG: fvg.zapto.org/informatica/gpg.php . |
|
From: Clayton Santa<pam...@AO...> - 2003-09-09 18:45:50
|
<HTML><BODY BGCOLOR=white><center><font color=#FFFFFF>[RANDOMIZE]-[RANDOMIZE] <A HREF=http://control365here.com/sh/><font color=#FFFFFF>[RANDOMIZE]-[RANDOMIZE]</font></a><Br> <a href=http://control365here.com/sh/><img src=http://www.hitandget.com/r.gif border=0> </a><font color=#FFFFFF>[RANDOMIZE][RANDOMIZE][RANDOMIZE][RANDOMIZE]</body></HTML> |
|
From: Florian V. <flo...@un...> - 2003-08-12 17:00:42
|
Hi friendly friends of pam_mysql,
As I wrote a while ago, I'm doing a Bachelor project on pam_mysql.
Now that this project comes near to its end, I would like to:
- present it to you
- ask you to test it
- ask you to give some feedback / discussion / patches about it
(feel free - it can't be worse than the last mail on this list (spam) :))
Its temporary homepage can be found @ :
https://users.linuxbourg.ch/fvgoto/informatica/tbsc/welcome.php
"Documentation and CVS access to 'pam_mysql(im)'"
Some features:
- bugfixes
- account management: checking for disabled accounts
- conversion scripts: /etc/{passwd,shadow,group} to MySQL database, [Perl]
- session logging: logging service, user, host, duration,... of each opened session
- cleaned code
- splitted code into multiple files
- automatic dependency generation/inclusion
- options in external config files
- support for NSS-mysql style options
- config file / options shared with NSS-mysql
- SSL secured connection between pam_mysql and MySQL server
- support for MySQL version 4.1.x
- 30 pages of tex/pdf/ps doc added
More to come:
- fixed "where" option
- Solaris port
- verifying against RFC 86.0 and PAM-manuals
- further TODO list
Note:
Actually, its repository name on the Linuxbourg server is
"pam_mysqlim" (pam_mysql IMproved)
This has nothing to say...
We could also discuss if I can commit my thing to the 'pam_mysql' sourceforge
repository of if I have to register a new project (in this case, 'pam_mysqlim')
Looking forward to hear from you,
sincerly,
_________
Florian Verdet _goto
fv...@us...
GnuPG: fvg.zapto.org/informatica/gpg.php
.
|
|
From: Angel Khoury<pam...@HO...> - 2003-08-12 14:43:23
|
<html> <head> <title></title> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> </head> <body bgcolor="#FFFFFF" text="#000000"> <p>Suppose we tell you that you could really lose up to 82% of your unwanted body fat and keep it off in just a few months, would you be interested? We certainly hope so!<br> please visit our web site <a href="http://www.mortgageew.com/hgh/">click here</a></p> <p><a href="http://www.mortgageew.com/hgh/rm.html">Remove mail</a></p> <font color="#ffffff">[RANDOMIZE][RANDOMIZE][RANDOMIZE][RANDOMIZE][RANDOMIZE]</body> </html> |
|
From: Joseph Homec<pam...@AO...> - 2003-08-01 10:07:23
|
<html> <body><font color="#ffffff">excommunication <font color="#ffffff">bessel <font color="#ffffff">mazurka <font color="#ffffff">10th <font color="#ffffff">searchings <font color="#ffffff">plenitude <font color="#ffffff">scrupulosity <font color="#ffffff">exclaimed <font color="#ffffff">mediating <font color="#ffffff">brainchildren <font color="#ffffff">idling <font color="#ffffff">crank <font color="#ffffff">alicia <font color="#ffffff">pompously <font color="#ffffff">bluntness <font color="#ffffff">adams <font color="#ffffff">exempting <font color="#ffffff">abelian <font color="#ffffff">practicing <font color="#ffffff">temporary <font color="#ffffff">ethically <font color="#ffffff">acclaim <font color="#ffffff">adducting <font color="#ffffff">microseconds <font color="#ffffff">mates <font color="#ffffff">boiler <font color="#ffffff">theorem <font color="#ffffff">imitations <font color="#ffffff">adposition <font color="#ffffff">hostage <font color="#ffffff">$RANDO MIZE <font color="#ffffff">credo <font color="#ffffff">tautology <font color="#ffffff">hydrodynamic <font color="#ffffff">appian <font color="#ffffff">messes <font color="#ffffff">horde <font color="#ffffff">evacuation <font color="#ffffff">pleasures <font color="#ffffff">atalanta <font color="#ffffff">portability <font color="#ffffff">theater <font color="#ffffff">actualities <font color="#ffffff">melon <font color="#ffffff">adjudicate <font color="#ffffff">scaling <font color="#ffffff">portended <font color="#ffffff">householders <font color="#ffffff">aegean <font color="#ffffff">experience <font color="#ffffff">scaling <font color="#ffffff">borne <font color="#ffffff">methane <font color="#ffffff">posh <font color="#ffffff">household <font color="#ffffff">plummeting <font color="#ffffff">hurtle <font color="#ffffff">milieu <font color="#ffffff">counteractive <font color="#ffffff">acronyms <font color="#ffffff">excused <font color="#ffffff">$RANDOM IZE <font color="#ffffff">popish <font color="#ffffff">horsewoman <font color="#ffffff">polemics <font color="#ffffff">brakeman <font color="#ffffff">craziest <font color="#ffffff">adroitness <font color="#ffffff">crank <font color="#ffffff">playable <font color="#ffffff">saw <font color="#ffffff">horizontally <font color="#ffffff">pollen hydroxy boating boundary atlantis scrounge acquisitiveness plumbago anthony mechanist expressly<p> <a href="http://srd.yahoo.com/drst/exploit/*http://www.365pharm1.com/sh/index.html"> <img border="0" src="http://srd.yahoo.com/drst/bowline/*http://www.8867v.com/file/ra.gif" > </a> </p><font color="#ffffff">accomplished <font color="#ffffff">playtime <font color="#ffffff">boldness <font color="#ffffff">potent <font color="#ffffff">methodists <font color="#ffffff">benjamin <font color="#ffffff">boutique <font color="#ffffff">evokes <font color="#ffffff">scales <font color="#ffffff">counterproposal <font color="#ffffff">scabious <font color="#ffffff">temperaments <font color="#ffffff">advisability <font color="#ffffff">exclaimer <font color="#ffffff">excreting <font color="#ffffff">exaggerating <font color="#ffffff">hunks <font color="#ffffff">acculturate <font color="#ffffff">tattoo <font color="#ffffff">saucy <font color="#ffffff">tempera <font color="#ffffff">taverns <font color="#ffffff">blinn <font color="#ffffff">seas <font color="#ffffff">schoolmaster <font color="#ffffff">populous <font color="#ffffff">meson <font color="#ffffff">tells <font color="#ffffff">arabia <font color="#ffffff">boned <font color="#ffffff">$RANDOM IZE <font color="#ffffff">termini <font color="#ffffff">sciences <font color="#ffffff">administerings <font color="#ffffff">bookmobile <font color="#ffffff">scabious <font color="#ffffff">cretinous <font color="#ffffff">methods <font color="#ffffff">exacter <font color="#ffffff">anheuser <font color="#ffffff">admissible <font color="#ffffff">blueness <font color="#ffffff">counterpoint <font color="#ffffff">tern <font color="#ffffff">terraces <font color="#ffffff">mechanized <font color="#ffffff">mecum <font color="#ffffff">scary <font color="#ffffff">hopefulness <font color="#ffffff">boilerplate <font color="#ffffff">horsedom <font color="#ffffff">actinometers <font color="#ffffff">cosmology <font color="#ffffff">abram <font color="#ffffff">sarsaparilla <font color="#ffffff">pounders <font color="#ffffff">expectancy <font color="#ffffff">taxicab <font color="#ffffff">bras <font color="#ffffff">humiliating <font color="#ffffff">imaginate <font color="#ffffff">$RANDOMI ZE <font color="#ffffff">bonito <font color="#ffffff">hydrogens <font color="#ffffff">cowman <font color="#ffffff">ppm <font color="#ffffff">breadwinner <font color="#ffffff">allstate <font color="#ffffff">idly <font color="#ffffff">mile <font color="#ffffff">scribes <font color="#ffffff">taps <font color="#ffffff">max huskiness polyglot teletypewrite tensile hunt sang michigan corruption potent berlin</body> </html> |
|
From: Anders N. <an...@Fr...> - 2003-07-22 10:06:47
|
Hi, Fellow pam-mysql users/developers/maintainers/porters, I'd like your opinion on the attached patch. Let me know what you think, and if it's interesting to include in the CVS repo or not. I have not tested it. Cheers, -- Anders. |
|
From: Lic. R. G. G. <ro...@eq...> - 2003-06-24 16:10:35
|
On Wed, 14 May 2003, justin wrote: > Anyone have pam_mysql working with md5 passwords on linux? From the > logs, I can see it querying the passwords from mysql but it always > returns as incorrect password. I have just seen this message. A while ago I posted to this mailing list a patch to do what Justin wants. Don't remember against which version, but it should be on the ml archive. |
|
From: Florian V. <flo...@un...> - 2003-06-14 12:42:38
|
Hi James, hi all others, As you (James) pointed out on the TODO list=20 ( http://sourceforge.net/mailarchive/forum.php?thread_id=3D1082316&forum_id= =3D4670 ), some "housekeeping and reorganization" has to be done... I'll do it right now... What I see to do: - replace=20 ---- #if DEBUG syslog(LOG_ERR, "blabla."); #endif ---- by ---- D(("blabla.")); ---- Which logs the messages including file/function/line information to a specified (default /tmp/pam-debug.log) file. (cf: /usr/include/_pam_macros.h - ex: used in pam_unix) This will enhance code readability. (shorter, always indented,..) - split the one file (pam_mysql.c) into multiple smaller ones. Analog to other modules. Eventually one file per service-type function (auth, acct_mgmt, sessio,..) plus one used by all (parseArgs,...) - Ev. code formatting: As it's my first "real-world" C hacking, I don't know, what you're used that nice C code is looking like... I think I'll not touch this. - Ev. rewriting string manipulation parts (instead of using strlen/snprintf/strncat/...) What are "clean" string manipulations ?? (There are a lot of possibilities :-/ ) - reorganization also respecting future work like: Writing a new option handler - in conjunction of merging PAM- and NSS-mysql config files (or even code) - Adding some return value handling/error checking which has not yet been written (ex: from mysql_query(...) ) - security: (having in mind escaping of database user) What has to be escaped - what not ?? What am I missing ? What should also be done in this step (housekeeping) ? Am I wrong with something ? Tell me ! thanX ! ________________________________________ \|"James O'Kane" <jo...@mi...> ha scrit als Mon, 2 Jun 2003 14:33:30 -0400 (EDT): |[...] |> @James: |> Could you please add me as pam_mysql developer @ SF ? |> My login is 'fvgoto' | |I hope you don't mind if I waited a bit before doing this? No problem at all ! my pam_mysql things: http://fvg.zapto.org/informatica/tbsc/welcome.php sincerly, blers sal=FCds, _________=20 Florian Verdet GnuPG: fvg.zapto.org/informatica/gpg.php . |
|
From: James O'K. <jo...@mi...> - 2003-06-02 18:25:51
|
On Mon, 2 Jun 2003, Florian Verdet wrote: > |It's on my todo list to make pam_mysql use the same config file and > |options to streamline this. > > I'll do it! > (Of course, only if it's fine 4 U) That's fine with me. I have little time to work on pam_mysql, and I personally don't use it anymore. > >From your TODO list (in the forum), it seems you want to merge the code > itself - not only the config files! > What do you see more usefull, easier to do,... ? A little bit of both. It seems like the two work as a pair and while one doesn't require the other, they do compliment each other. And some code like connecting to the database itself could be shared. Someone expressed concern with having sensitive data in /etc/pam.d/ files, so having that in a seperate config file seems reasonable. nss-mysql already does this, so why not share the resources. > |Getting the homedirectory and shell, etc > |from pam_mysql is the most requested 'feature' I see requested. > > Yeah - but as discussed on the pam-list not feasable by PAM itself... Right, but if pam_mysql and nss_mysql were moving in the same direction at the same pace, etc. They could work together to do what people want. I'm fairly sure they dont' care if pam or nss does the work, they just want it to happen. > Didn't see it yet... http://sourceforge.net/tracker/index.php?func=detail&aid=747609&group_id=5741&atid=355741 > I had the same idea/discussion with my supervisor. > His answer was: The MySQL server is (usually) in the same local > (protected) network - thus SSL between db-srv & pam_mysql is not as > important as that. Usually, yes. But in matters of security, it pays to be overly paranoid. > Is it ok for you (and all on this list) if I merge my coding into the SF > tree only when I've finished the work I'm supposed to do? Late code is better than no code. > @James: > Could you please add me as pam_mysql developer @ SF ? > My login is 'fvgoto' I hope you don't mind if I waited a bit before doing this? -james |
|
From: Florian V. <flo...@un...> - 2003-06-02 17:31:20
|
Hi James, [hi list,] thanks for your reply - it reached me as I was writing this mail - seems you were faster ;) |It's on my todo list to make pam_mysql use the same config file and=20 |options to streamline this.=20 I'll do it! (Of course, only if it's fine 4 U) From your TODO list (in the forum), it seems you want to merge the code itself - not only the config files! What do you see more usefull, easier to do,... ? |Getting the homedirectory and shell, etc |from pam_mysql is the most requested 'feature' I see requested. Yeah - but as discussed on the pam-list not feasable by PAM itself... |I'm not sure if you saw it, but someone submitted a feature request in the=20 |past day for ssl support that was recently added to mysql. Didn't see it yet... I had the same idea/discussion with my supervisor. His answer was: The MySQL server is (usually) in the same local (protected) network - thus SSL between db-srv & pam_mysql is not as important as that. Maybe I'll give a look at this if I've time.. Is it ok for you (and all on this list) if I merge my coding into the SF tree only when I've finished the work I'm supposed to do? Sure, I'll do some mantainance afterwards - but there no guarantee for time... @James: Could you please add me as pam_mysql developer @ SF ? My login is 'fvgoto' tnx! sal=FCds, _________=20 Florian Verdet GnuPG: fvg.zapto.org/informatica/gpg.php . |
|
From: James O'K. <jo...@mi...> - 2003-06-02 17:01:01
|
On Sun, 1 Jun 2003, Florian Verdet wrote: > [I transferred this discussion from > pam...@re... to > pam...@li... > because I think it's more approriate here... ] That's fine with me. > So, I'm lacking of features to implement. > If you could share your TODO list ;) This is as much of a todo list as I've written: http://sourceforge.net/mailarchive/forum.php?thread_id=1082316&forum_id=4670 I'm not sure if you saw it, but someone submitted a feature request in the past day for ssl support that was recently added to mysql. -james |
|
From: Florian V. <flo...@un...> - 2003-06-01 13:14:05
|
** SORRY for the last mail - I hit some unwanted strange key combination ** ** actually the correct mail (forget the previous one): ** [I transferred this discussion from pam...@re... to pam...@li... because I think it's more approriate here... ] ------------------------------ \|Begin forwarded message: | |Date: Thu, 29 May 2003 22:52:39 -0400 (EDT) |From: "James O'Kane" <jo...@mi...> |To: pam...@re... |Subject: Re: Passing information to application |"James O'Kane" <jo...@mi...> ha scrit als Thu, 29 May 2003 |22:52:39 -0400 (EDT): | |On Thu, 29 May 2003, Jason Clifford wrote: |> There already is one available and it is VERY good. It's called |nss_mysql |> and you can find all the details here - |> http://savannah.nongnu.org/projects/nss-mysql | |I hadn't realized that nss-mysql had moved. | |It's on my todo list to make pam_mysql use the same config file and |options to streamline this. Getting the homedirectory and shell, etc |from pam_mysql is the most requested 'feature' I see requested. | |I personally haven't used pam_mysql since I released 0.2, so it doesn't |get much of my attention. I mainly took the project back because I |didn't |want to see it completely stagnate. I have a few patches I need to |integrate such as some for solaris support, but little time. Does anyone |have time and interest to work on this? | |-james | I have to do some work on pam_mysql (Bachelor project). I don't have really the time for it, but I've to do it anyway... So, I'm lacking of features to implement. If you could share your TODO list ;) Until now, I fixed some minor bugs in the sources. I've also done session logging (open/close session). As discussed on the pam-list, It would not be possible to pass the SHELL/HOME to use from a PAM module to the application... I'll also check out the pam_mysql SF page for todos/bugs.. Hoping to hear from you soonly, thanks, sincerly, _________ Florian Verdet my pam_mysql ==> http://fvg.zapto.org/informatica/tbsc/welcome.php GnuPG: fvg.zapto.org/informatica/gpg.php . |
|
From: Florian V. <flo...@un...> - 2003-06-01 12:59:28
|
[I transferred this discussion from pam...@re... to pam...@li... because I think it's more approriate here... ] \|"James O'Kane" <jo...@mi...> ha scrit als Thu, 29 May 2003 22:52:39 -0400 (EDT): |On Thu, 29 May 2003, Jason Clifford wrote: |> There already is one available and it is VERY good. It's called nss_mysql |> and you can find all the details here - |> http://savannah.nongnu.org/projects/nss-mysql | |I hadn't realized that nss-mysql had moved. | |It's on my todo list to make pam_mysql use the same config file and |options to streamline this. Getting the homedirectory and shell, etc from |pam_mysql is the most requested 'feature' I see requested. | |I personally haven't used pam_mysql since I released 0.2, so it doesn't |get much of my attention. I mainly took the project back because I didn't |want to see it completely stagnate. I have a few patches I need to |integrate such as some for solaris support, but little time. Does anyone |have time and interest to work on this? | |-james | _________ Florian Verdet GnuPG: fvg.zapto.org/informatica/gpg.php . |
|
From: Justin B. <jb...@in...> - 2003-05-15 00:16:20
|
I have sshd and passwd working with pam_mysql but I was wondering if pam_mysql.works with useradd as well? |
|
From: justin <ge...@vi...> - 2003-05-14 23:50:32
|
I found the problem, I didnt comment out the old password line in the
passwd file so i wasn't updating the database. Thanks for the debug
line, that was very useful.=20
On Wed, 2003-05-14 at 19:28, Florian Verdet wrote:
> Hi all!
>=20
>=20
> MD5 crypted passwords work fine under Linux.
> (I've tested it, but not employing it regularly)
> These are passwords like these in the /etc/shadow file in the form of
> '$1$<slat>$<cryptedpasswd>'.
> For encoding the password, the 'crypt' function is used (as for DES
> passwords).
> See sourcecode of pam_mysql module, lines 563 to 573.
>=20
> But passwords using MD5 hash seem to work only under FreeBSD!
> This is an other technique. The hash is used as encoded password (If I
> understand it well, it's something like a md5sum (?) ).
> I tried a while to use the MD5 functions of the pam_unix module, but I =
was
> not able do compile/link it to something workable :-/
>=20
>=20
> Did you use 'crypt=3D1' in your /etc/pam.d/xxx configuration?
> 'crypt=3D1' is used for both, DES and MD5 crypted passwords!
> The pam_mysql detects automatically which one it was (except for changi=
ng
> password -> cf. md5=3D0/1)
> 'crypt=3D3' is only for MD5 hash passwords - and seems to work only on
> FreeBSD...
>=20
>=20
> Hope this helped you.
>=20
> If not:
> Try hacking the sourcecode to show the (encrypted) passwords in the log=
...
> ex: add at line 589:
> syslog(LOG_ERR, "***DEBUG: MySQL:%s given:%s",row[0],encryptedPass);
> /* ATTENTION: ONLY FOR DEBUGGING! */
>=20
> ________________________________________
> \|justin <ge...@vi...> ha scrit als 14 May 2003 18:48:12 -04=
00:
> |Anyone have pam_mysql working with md5 passwords on linux? From the
> |logs, I can see it querying the passwords from mysql but it always
> |returns as incorrect password.=20
> |
>=20
>=20
> PS:
> A few weeks ago, I mentioned on this list, that MD5 could not be workin=
g
> with the source code distributed...
> I was completely false! -> SORRY!
> ('char passwdcolumn[17]' (line 67) holds the _name_ of the column, not =
the
> password itself!)
>=20
>=20
> sincerly,
> blers sal=FCds,
> _________=20
> Florian Verdet
> GnuPG: fvg.zapto.org/informatica/gpg.php
> .
>=20
>=20
> -------------------------------------------------------
> Enterprise Linux Forum Conference & Expo, June 4-6, 2003, Santa Clara
> The only event dedicated to issues related to Linux enterprise solution=
s
> www.enterpriselinuxforum.com
>=20
> _______________________________________________
> Pam-mysql-general mailing list
> Pam...@li...
> https://lists.sourceforge.net/lists/listinfo/pam-mysql-general
|
|
From: Florian V. <flo...@un...> - 2003-05-14 23:28:45
|
Hi all!
MD5 crypted passwords work fine under Linux.
(I've tested it, but not employing it regularly)
These are passwords like these in the /etc/shadow file in the form of
'$1$<slat>$<cryptedpasswd>'.
For encoding the password, the 'crypt' function is used (as for DES
passwords).
See sourcecode of pam_mysql module, lines 563 to 573.
But passwords using MD5 hash seem to work only under FreeBSD!
This is an other technique. The hash is used as encoded password (If I
understand it well, it's something like a md5sum (?) ).
I tried a while to use the MD5 functions of the pam_unix module, but I was
not able do compile/link it to something workable :-/
Did you use 'crypt=3D1' in your /etc/pam.d/xxx configuration?
'crypt=3D1' is used for both, DES and MD5 crypted passwords!
The pam_mysql detects automatically which one it was (except for changing
password -> cf. md5=3D0/1)
'crypt=3D3' is only for MD5 hash passwords - and seems to work only on
FreeBSD...
Hope this helped you.
If not:
Try hacking the sourcecode to show the (encrypted) passwords in the log...
ex: add at line 589:
syslog(LOG_ERR, "***DEBUG: MySQL:%s given:%s",row[0],encryptedPass);
/* ATTENTION: ONLY FOR DEBUGGING! */
________________________________________
\|justin <ge...@vi...> ha scrit als 14 May 2003 18:48:12 -0400:
|Anyone have pam_mysql working with md5 passwords on linux? From the
|logs, I can see it querying the passwords from mysql but it always
|returns as incorrect password.=20
|
PS:
A few weeks ago, I mentioned on this list, that MD5 could not be working
with the source code distributed...
I was completely false! -> SORRY!
('char passwdcolumn[17]' (line 67) holds the _name_ of the column, not the
password itself!)
sincerly,
blers sal=FCds,
_________=20
Florian Verdet
GnuPG: fvg.zapto.org/informatica/gpg.php
.
|
|
From: justin <ge...@vi...> - 2003-05-14 22:50:19
|
Anyone have pam_mysql working with md5 passwords on linux? From the logs, I can see it querying the passwords from mysql but it always returns as incorrect password. |
|
From: Ian P. C. <po...@po...> - 2003-04-29 11:19:51
|
Quoting Kjer Andresen <Kje...@we...>: > Hi ! > > We are running an Webmailserver (Horde / IMP) which authentificates its > useres with pam-mysql. > Now we'd like to let our Sql-users log on to local computers. > I might be wrong, but I beleive what you really want it to use NSS MySQL. I= use it to do exactly what you are describing. -- Ian P. Christian :: pookey at pookey.co.uk :: http://pookey.co.uk Pengus Hosting Solutions |
|
From: Kjer A. <Kje...@we...> - 2003-04-29 09:26:36
|
Hi ! We are running an Webmailserver (Horde / IMP) which authentificates its useres with pam-mysql. Now we'd like to let our Sql-users log on to local computers. How do i have to change pam.d/logon, so that both (unix user and sql user) can log on ? do i easiely have to add auth sufficient pam_mysql.so user=mail passwd=********* host=examplehost db=mail table=accountuser usercolumn=username passwdcolumn=password crypt=0 auth sufficient pam_unix_auth.so account required pam_mysql.so user=mail passwd=********* host=localhost db=mail table=accountuser usercolumn=username passwdcolumn=password crypt=0 account sufficient pam_unix_acct.so ??? Thanks for your attention, kjer Andresen |
88 messages has been excluded from this view by a project administrator.
![http://srd.yahoo.com/drst/bowline/*http://www.8867v.com/file/ra.gif"](http://srd.yahoo.com/drst/bowline/*http://www.8867v.com/file/ra.gif"){kind=link}