Thorsten Thanks! Wow so pam_unix.so NEVER returns a failure code? As you said, it either returns a success code or else return code is *ignored*?!?! chris On Fri, 2006-02-03 at 07:10 +0100, Thorsten Kukuk wrote: > On Thu, Feb 02, Christian Seberino wrote: > > > How come if I change "required" to "sufficient" on the pam_deny > > line of common-auth file below it then allows all login attempts to > > succeed!?! > > Because sufficent means: If the module returns PAM_SUCCESS, return > with success, else ignore. If you have only sufficient modules, there > is no failed. > > Thorsten >
Attachment:
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Pam-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/pam-list
