diff options
| author | Steve Langasek <steve.langasek@ubuntu.com> | 2019-01-03 12:48:14 -0800 |
|---|---|---|
| committer | Steve Langasek <steve.langasek@ubuntu.com> | 2019-01-03 12:48:14 -0800 |
| commit | d5b06b67bbeeed7c05c0eb2e05d6a972ad050d1c (patch) | |
| tree | ba5654cffacfd2002eefc5bc3764a7971afff1dc /Linux-PAM/modules/pam_ftp/README | |
| parent | 4c51da22e068907adb7857d50f5109a467c94d7c (diff) | |
| parent | 7cbfa335c57d068d59508c844f3957165cccfb9b (diff) | |
| download | pam-d5b06b67bbeeed7c05c0eb2e05d6a972ad050d1c.tar.gz pam-d5b06b67bbeeed7c05c0eb2e05d6a972ad050d1c.tar.bz2 pam-d5b06b67bbeeed7c05c0eb2e05d6a972ad050d1c.zip | |
New upstream version 0.99.7.1
Diffstat (limited to 'Linux-PAM/modules/pam_ftp/README')
| -rw-r--r-- | Linux-PAM/modules/pam_ftp/README | 60 |
1 files changed, 47 insertions, 13 deletions
diff --git a/Linux-PAM/modules/pam_ftp/README b/Linux-PAM/modules/pam_ftp/README index 6d03330c..15f4130e 100644 --- a/Linux-PAM/modules/pam_ftp/README +++ b/Linux-PAM/modules/pam_ftp/README @@ -1,18 +1,52 @@ -This is the README for pam_ftp ------------------------------- +pam_ftp — PAM module for anonymous access module -This module is an authentication module that does simple ftp -authentication. +━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ -Recognized arguments: +DESCRIPTION - "debug" print debug messages - "users=" comma separated list of users which - could login only with email adress - "ignore" allow invalid email adresses +pam_ftp is a PAM module which provides a pluggable anonymous ftp mode of +access. -Options for: -auth: for authentication it provides pam_authenticate() and - pam_setcred() hooks. +This module intercepts the user's name and password. If the name is ftp or +anonymous, the user's password is broken up at the @ delimiter into a PAM_RUSER +and a PAM_RHOST part; these pam-items being set accordingly. The username ( +PAM_USER) is set to ftp. In this case the module succeeds. Alternatively, the +module sets the PAM_AUTHTOK item with the entered password and fails. + +This module is not safe and easily spoofable. + +OPTIONS + +debug + + Print debug information. + +ignore + + Pay no attention to the email address of the user (if supplied). + +ftp=XXX,YYY,... + + Instead of ftp or anonymous, provide anonymous login to the comma separated + list of users: XXX,YYY,.... Should the applicant enter one of these + usernames the returned username is set to the first in the list: XXX. + +EXAMPLES + +Add the following line to /etc/pam.d/ftpd to handle ftp style anonymous login: + +# +# ftpd; add ftp-specifics. These lines enable anonymous ftp over +# standard UN*X access (the listfile entry blocks access to +# users listed in /etc/ftpusers) +# +auth sufficient pam_ftp.so +auth required pam_unix.so use_first_pass +auth required pam_listfile.so \ + onerr=succeed item=user sense=deny file=/etc/ftpusers + + +AUTHOR + +pam_ftp was written by Andrew G. Morgan <morgan@kernel.org>. -Thorsten Kukuk <kukuk@suse.de>, 17. June 1999 |