Specifically, rather than going through PAM modules as specified in the pam.d configuration file (e.g. pam.d/httpd in the case I am focusing on), mod_auth_pam punches through directly to base underlying Unix calls including getpwnam and getgrnam (calls that don't lay on top of PAM) for parts of its function.
The mod_auth_external module was pointed out to me this morning as an alternative to mod_auth_pam:
<http://www.unixpapa.com/mod_auth_external.html>
One would use this in combination with the pwauth helper binary:
<http://www.unixpapa.com/pwauth/>
The latter does the actual PAM authentication, using pipes for IPC.
_______________________________________________ Pam-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/pam-list
