- Timestamp:
- 11/29/2005 06:12:19 AM (18 years ago)
- Branches:
- 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 6.2, 6.2.0, 6.2.0-rc1, 6.2.0-rc2, 6.3, 6.3-rc1, 6.3-rc2, 6.3-rc3, 7.10, 7.4, 7.5, 7.6, 7.6-blfs, 7.6-systemd, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, gnome, kde5-13430, kde5-14269, kde5-14686, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, krejzi/svn, lazarus, lxqt, nosym, perl-modules, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, systemd-11177, systemd-13485, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal
- Children:
- 59ddef1
- Parents:
- 9ad7046
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
postlfs/security/linux-pam.xml
r9ad7046 rccb8b2d 6 6 7 7 <!ENTITY linux-pam-download-http "http://www.kernel.org/pub/linux/libs/pam/pre/library/Linux-PAM-&linux-pam-version;.tar.bz2"> 8 <!ENTITY linux-pam-download-ftp "ftp://ftp.kernel.org/pub/linux/libs/pam/pre/library/Linux-PAM-&linux-pam-version;.tar.bz2"> 9 <!ENTITY linux-pam-md5sum "ccff87fe639efdfc22b1ba4a0f08ec57"> 10 <!ENTITY linux-pam-size "376 KB"> 11 <!ENTITY linux-pam-buildsize "8.6 MB"> 12 <!ENTITY linux-pam-time "0.2 SBU"> 8 <!ENTITY linux-pam-download-ftp "ftp://ftp.kernel.org/pub/linux/libs/pam/pre/library/Linux-PAM-&linux-pam-version;.tar.bz2"> 9 <!ENTITY linux-pam-md5sum "5f44d3cfe402dba91b01a6b1c40aba2a"> 10 <!ENTITY linux-pam-size "710 KB"> 11 <!ENTITY linux-pam-buildsize "15.6 MB"> 12 <!ENTITY linux-pam-time "0.5 SBU"> 13 <!ENTITY linux-pam-docs-download "http://www.kernel.org/pub/linux/libs/pam/pre/library/Linux-PAM-&linux-pam-version;-docs.tar.bz2"> 13 14 ]> 14 15 … … 59 60 <bridgehead renderas="sect3">Additional Downloads</bridgehead> 60 61 <itemizedlist spacing='compact'> 61 <title>Documentation</title> 62 <listitem> 63 <para>Optional documentation: <ulink 64 url="http://www.kernel.org/pub/linux/libs/pam/pre/library/Linux-PAM-&linux-pam-version;-docs.tar.bz2"/> 65 </para> 66 </listitem> 67 </itemizedlist> 68 69 <itemizedlist spacing='compact'> 70 <title>Patches</title> 71 <listitem> 72 <para>Required patch: <ulink 73 url="&patch-root;/Linux-PAM-&linux-pam-version;-gcc4-1.patch"/></para> 62 <listitem> 63 <para>Optional documentation: 64 <ulink url="&linux-pam-docs-download;"/></para> 74 65 </listitem> 75 66 </itemizedlist> … … 81 72 82 73 <bridgehead renderas="sect4">Optional</bridgehead> 83 <para><ulink 84 url="http://sourceforge.net/projects/sgmltools-lite/">sgmltools-lite</ulink> 85 and <xref linkend="db"/> (for pam_userdb module)</para> 74 <para><xref linkend="db"/> (for the pam_userdb module), 75 <ulink url="http://www.prelude-ids.org/">Prelude</ulink> and 76 <ulink 77 url="http://sourceforge.net/projects/sgmltools-lite/">sgmltools-lite</ulink></para> 86 78 87 79 </sect2> … … 90 82 <title>Installation of Linux-PAM</title> 91 83 84 <para>If you downloaded the documentation, unpack the tarball into the 85 <filename class='directory'>doc</filename> directory of the source 86 tree:</para> 87 88 <screen><userinput>tar -xf ../Linux-PAM-&linux-pam-version;-docs.tar.bz2 -C doc</userinput></screen> 89 92 90 <para>Install <application>Linux-PAM</application> by 93 91 running the following commands:</para> 94 92 95 <screen><userinput>sed -i 's|DICT_DIR_CANDIDATES="|&/lib /lib/cracklib |' \ 96 configure && 97 patch -Np1 -i ../Linux-PAM-&linux-pam-version;-gcc4-1.patch && 98 ./configure --enable-static-libpam --with-mailspool=/var/mail \ 99 --enable-read-both-confs --sysconfdir=/etc \ 100 --mandir=/usr/share/man && 93 <screen><userinput>./configure --libdir=/usr/lib \ 94 --sbindir=/lib/security \ 95 --enable-securedir=/lib/security \ 96 --enable-docdir=/usr/share/doc/Linux-PAM-&linux-pam-version; \ 97 --enable-read-both-confs && 101 98 make</userinput></screen> 102 99 103 <para>If you downloaded the documentation and wish to install it, unpack the 104 tarball into the <filename class='directory'>doc</filename> directory:</para> 105 106 <screen><userinput>tar -xf ../Linux-PAM-&linux-pam-version;-docs.tar.bz2 -C doc</userinput></screen> 100 <para>This package does not come with a test suite.</para> 107 101 108 102 <para>Now, as the <systemitem class="username">root</systemitem> user:</para> 109 103 110 104 <screen role="root"><userinput>make install && 111 mv -v /lib/ libpam.a /lib/libpam_misc.a /lib/libpamc.a /usr/lib&&112 rm -v /lib/libpam{,c,_misc}.so&&113 ln -v -sf ../../lib/libpam.so. &linux-pam-version;/usr/lib/libpam.so &&114 ln -v -sf ../../lib/libpam _misc.so.&linux-pam-version; /usr/lib/libpam_misc.so &&115 ln -v -sf ../../lib/libpam c.so.&linux-pam-version; /usr/lib/libpamc.so</userinput></screen>116 117 <para>I nstall the documentation using the following commands:</para>118 119 <screen role="root"><userinput>install -v -d -m755 /usr/share/doc/Linux-PAM-&linux-pam-version; && 120 for DOCTYPE in html ps specs txts105 mv -v /lib/security/pam_tally /sbin && 106 mv -v /usr/lib/libpam*.so.0* /lib && 107 ln -v -sf ../../lib/libpam.so.0.81.1 /usr/lib/libpam.so && 108 ln -v -sf ../../lib/libpamc.so.0.81.0 /usr/lib/libpamc.so && 109 ln -v -sf ../../lib/libpam_misc.so.0.81.1 /usr/lib/libpam_misc.so</userinput></screen> 110 111 <para>If you downloaded the documentation, install it using the following 112 command:</para> 113 114 <screen role="root"><userinput>for DOCTYPE in html pdf ps txts 121 115 do 122 116 cp -v -R doc/$DOCTYPE /usr/share/doc/Linux-PAM-&linux-pam-version; … … 128 122 <title>Command Explanations</title> 129 123 130 <para><command>sed -i 's|DICT_DIR_CANDIDATES="|&/lib /lib/cracklib |' 131 configure</command>: This command changes where 132 <command>configure</command> looks to find the 133 <application>CrackLib</application> dictionary.</para> 134 135 <para><parameter>--enable-static-libpam</parameter>: This switch builds 136 static PAM libraries as well as the dynamic libraries.</para> 137 138 <para><parameter>--with-mailspool=/var/mail</parameter>: This switch 139 makes the mailspool directory FHS compliant.</para> 140 141 <para><parameter>--enable-read-both-confs</parameter>: This switch lets 142 the local administrator choose which configuration file setup to use.</para> 143 144 <para><command>mv -v /lib/libpam.a /lib/libpam_misc.a /lib/libpamc.a 145 /usr/lib</command>: This command moves the static libraries to 146 <filename class='directory'>/usr/lib</filename> to comply with FHS 147 guidelines.</para> 148 149 <para><command>rm -v /lib/libpam{,c,_misc}.so; ln -v -sf ... 150 /usr/lib/...</command>: These commands move the 151 <filename class='symlink'>.so</filename> symlinks from 152 <filename class='directory'>/lib</filename> to 124 <para><parameter>--libdir=/usr/lib</parameter>: This parameter results in 125 the libraries being installed in 153 126 <filename class='directory'>/usr/lib</filename>.</para> 127 128 <para><parameter>--sbindir=/lib/security</parameter>: This parameter 129 results in two executables, one which is not intended to be run from the 130 command line, being installed in the same directory as the PAM modules. 131 One of the executables is later moved to the 132 <filename class='directory'>/sbin</filename> directory.</para> 133 134 <para><parameter>--enable-securedir=/lib/security</parameter>: This 135 parameter results in the PAM modules being installed in 136 <filename class='directory'>/lib/security</filename>.</para> 137 138 <para><parameter>--enable-docdir=...</parameter>: This parameter results in 139 the documentation being installed in a versioned directory name.</para> 140 141 <para><parameter>--enable-read-both-confs</parameter>: This parameter 142 allows the local administrator to choose which configuration file setup to 143 use.</para> 144 145 <para><command>mv -v /lib/security/pam_tally /sbin</command>: The 146 <command>pam_tally</command> program is designed to be run by the system 147 administrator, possibly in single-user mode, so it is moved to the 148 appropriate directory.</para> 149 150 <para><command>mv -v /usr/lib/libpam*.so.0* /lib</command>: This command 151 moves the dynamic libraries to <filename class='directory'>/lib</filename> 152 as they may be required in single user mode.</para> 153 154 <para><command>ln -v -sf ...</command>: These commands recreate the 155 <filename class='symlink'>.so</filename> symlinks as the libraries they 156 pointed to were moved to <filename class='directory'>/lib</filename>.</para> 154 157 155 158 </sect2> … … 184 187 <para>Configuration information is placed in 185 188 <filename class='directory'>/etc/pam.d/</filename> or 186 <filename>/etc/pam.conf</filename> depending on user preference.187 Below are example files of each type:</para>189 <filename>/etc/pam.conf</filename> depending on system administrator 190 preference. Below are example files of each type:</para> 188 191 189 192 <screen><literal># Begin /etc/pam.d/other … … 209 212 descriptions of fields and allowable entries. The <ulink 210 213 url="http://www.kernel.org/pub/linux/libs/pam/Linux-PAM-html/pam.html"> 211 Linux-PAM guide for system administrators</ulink>212 is recommended for further reading.</para>214 Linux-PAM System Administrators' Guide</ulink> 215 is recommended for additional information.</para> 213 216 214 217 <para>Refer to <ulink … … 216 219 for a list of various modules available.</para> 217 220 218 < note>221 <important> 219 222 <para>You should now reinstall the <xref linkend="shadow"/> 220 223 package.</para> 221 </ note>224 </important> 222 225 223 226 </sect3> … … 229 232 230 233 <segmentedlist> 231 <segtitle>Installed Program s</segtitle>234 <segtitle>Installed Program</segtitle> 232 235 <segtitle>Installed Libraries</segtitle> 233 236 <segtitle>Installed Directories</segtitle> 234 237 235 238 <seglistitem> 236 <seg> unix_chkpwd andpam_tally</seg>239 <seg>pam_tally</seg> 237 240 <seg>libpam.[so,a], libpamc.[so,a], and libpam_misc.[so,a]</seg> 238 <seg>/etc/pam.d, /etc/security, /lib/security ,and241 <seg>/etc/pam.d, /etc/security, /lib/security and 239 242 /usr/include/security</seg> 240 243 </seglistitem> … … 245 248 <?dbfo list-presentation="list"?> 246 249 <?dbhtml list-presentation="table"?> 247 248 <varlistentry id="unix_chkpwd">249 <term><command>unix_chkpwd</command></term>250 <listitem>251 <para>checks user passwords that are stored252 in read protected databases.</para>253 <indexterm zone="linux-pam unix_chkpwd">254 <primary sortas="b-unix_chkpwd">unix_chkpwd</primary>255 </indexterm>256 </listitem>257 </varlistentry>258 250 259 251 <varlistentry id="pam_tally">
Note:
See TracChangeset
for help on using the changeset viewer.