I was hoping to stick w/chap. I realize pap has the login option...but I wanted something slightly more secure... And I'm not really sure that the login option has anything to do with pam. I believe this works because it goes directly to /etc/passwd (the system password database). If it used pam, then pam would be determining where it would go (ldap, etc/passwd, etc.). Maybe just the man page for the login option of pppd is out-of-date. mike -----Original Message----- From: Carlo Marcelo Arenas Belon [mailto:carenas@chasqui.lared.net.pe] Sent: Tuesday, February 13, 2001 4:15 AM To: 'pam-list@redhat.com' Subject: Re: [PAM] PPP and PAM <SNIP> > I use pap/chap in a generic sense (username, * for servername, secret, and * > for ip), so I shouldn't technically need the secrets files...but I'm not > sure to what extent PAM is integrated with PPP. well, you can use on /etc/ppp/pap-secrets client server secret ip * $(hostname) "" * and PAM would make the validation as you specified on /etc/pam.d/ppp so you can get your users to use their own login/password for the RAS. HTH Carlo _______________________________________________ Pam-list@redhat.com https://listman.redhat.com/mailman/listinfo/pam-list
