[KLUG Members] PAM

[Adam Tauno Williams]

> I am trying to figure out how PAM works. As a  learning exercise I want to
> set user password NULL or zero character. I know it is very bad practice.I
> am using fedora core 3.
> auth        required      /lib/security/$ISA/pam_env.so
> auth        sufficient    /lib/security/$ISA/pam_unix.so likeauth nullok
> auth        required      /lib/security/$ISA/pam_deny.so

Since "nullok" is present, a blank password should be good as is.

> account     required      /lib/security/$ISA/pam_unix.so
> account     sufficient    /lib/security/$ISA/pam_succeed_if.so uid < 100

What distro is this?  I've never met a pam_succeed_if module before,
seems sort of like pam_limit;  also pam_unix is pretty much superseded
by the much more robust and less documented pam_unix2