Does portable OpenSSH support PAM_USER change?

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



Hi,

A simple question with perhaps a not so simple answer. :)

Does portable OpenSSH support that a PAM module changes the user during login?

That is, what we would like to achieve is that if user "foo" stored in an AA server like LDAP provides correct credentials (username + password) that user should end up in a shell process running as local user "bar" instead (and not be able to escape out to a process running as "foo").

Or is PAM the wrong tool for this? Should this be done using NSS instead?


/John

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev




[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux