> I'd actually be very interested in this. Have you written any code, > would you like some help? > Nothing written yet; I'm just in the thinking stage at the moment -- I wanted to be sure that I was thinking straight. And sure, I'd love some help as this would be my first pam module. I wonder which telnetd source code to start with; I have two: The one that RedHat ships, and the other is the one that Tom Wu ships with his SRP. I did a quick diff and it appears that the source is quite different. > SBNelson@thermeon.com wrote: > > > > I've been thinking about modifying telnetd to use PAM to control which > > authentication methods telnetd should offer the client. This is to get > > around the fact that the telnet protocol says that the server supplies > the > > list, but the client gets to choose one from the list. I'm also > thinking > > about doing the same for FTP. > > > > Example: > > auth required > /lib/security/pam_telnetd_auth.so > > choices=srp,krb5,none > > auth sufficient /lib/security/pam_telnetd_auth.so > > used=srp,krb5 > > auth required /lib/security/pam_unix.so ... > > > > Can anyone see problems in what I would like to do? >
