diff options
| author | Pavel Březina <pbrezina@redhat.com> | 2020-01-10 15:53:35 +0100 |
|---|---|---|
| committer | Tomáš Mráz <t8m@users.noreply.github.com> | 2020-01-28 12:24:13 +0100 |
| commit | 926d7935edf35385e6c28bb97666aee443b71e46 (patch) | |
| tree | eaf1b725e24359dbd4e7a1f73450a8b20cd05f77 /modules/pam_keyinit | |
| parent | 4dd9b97b762cc73816cb867d49c9d0d0b91d642c (diff) | |
| download | pam-926d7935edf35385e6c28bb97666aee443b71e46.tar.gz pam-926d7935edf35385e6c28bb97666aee443b71e46.tar.bz2 pam-926d7935edf35385e6c28bb97666aee443b71e46.zip | |
pam_usertype: new module to tell if uid is in login.defs ranges
This module will check if the user account type is system or regular based
on its uid. To evaluate the condition it will use 0-99 reserved range
together with `SYS_UID_MIN` and `SYS_UID_MAX` values from `/etc/login.defs`.
If these values are not set, it uses configure-time defaults
`--with-sys-uid-min` and `--with-uid-min` (according to `login.defs` man page
`SYS_UID_MAX` defaults to `UID_MIN - 1`.
This information can be used to skip specific module in pam stack
based on the account type. `pam_succeed_if uid < 1000` is used at the moment
however it does not reflect changes to `login.defs`.
Diffstat (limited to 'modules/pam_keyinit')
0 files changed, 0 insertions, 0 deletions