can anyone explain the rationale behind the "pam_permit" lines in, for instance, the /etc/pam.d/up2date file in red hat 7.3? #%PAM-1.0 auth sufficient /lib/security/pam_rootok.so auth required /lib/security/pam_stack.so service=system-auth session required /lib/security/pam_permit.so session optional /lib/security/pam_xauth.so account required /lib/security/pam_permit.so as i understand it, pam_permit.so always returns success, so what does it add to this file? rday also as i read it, it would of course be suicidal to have a line like <module-type> sufficient /lib/security/pam_permit.so at least in most cases.
