> No, that's what I said, the pam_mount module is badly written and > looking to the code, you will see that it mounts the volumes in the auth > part. > That's not what I learn reading through the pam documentation about the > purpose of auth. Yes. You are correct to say that pam_mount /should/ perform its operations using PAM's session interface instead of auth. However, the PAM shipped by the Debian project disallows one from quereying a user's password using the session interface. Only the auth-related functions may retrieve a user's password. This is why pam_mount using PAM's auth interface. Red Hat's PAM distributions allows password access through its session interface. Why doesn't Debian's? I would like to fix this. -- Mike _______________________________________________ Pam-list@redhat.com https://listman.redhat.com/mailman/listinfo/pam-list
