>
> Does the application give your module the username and password used to
> authenticate to the external db?
you're right but, Why an application should give extra information for
some db's? I want to use PAM in order to hide these informations,
leaving the applications believe that they are authenticating users as
the usual way...
> If your module gets the username/password from its own configuration file,
> there's no reason to store this username in one of the PAM_ITEMs: the
> PAM_ITEMs are there for module<->module and application<->module
> intercommunication.
Yes, this is correct, my doubt was after reading the 5.1.2 of the "Linux
Pam Module Writers' Guide", where PAM_USER is "the user under whose
identity the service will be granted". According to me, if I should
connect to an external repository I should assume the identity of an
authorisated repository user and often this one differs from the user
beeing authenticated.
--
o _______________
/\_ _| | Max Liccardo - Security Pianist Consultant
_\__`[_______________| mliccardo.c@mail.tim.it (at work)
] [ \, ][ ][ ravel@tiscalinet.it (at home,sweet home)
"..fatti non foste per viver come bruti,
ma per seguir virtute e cAnoscenza .."
begin:vcard
n:Liccardo;Massimiliano
tel;cell:eeeehhhhh......
tel;work:06 71036620
x-mozilla-html:FALSE
adr:;;;;;;
version:2.1
email;internet:mliccardo.c@mail.tim.it
title:Security Pianist Free Consultant
x-mozilla-cpt:;22288
fn:Massimiliano Liccardo
end:vcard
