diff options
| author | Tomas Mraz <tm@t8m.info> | 2005-10-20 17:01:06 +0000 |
|---|---|---|
| committer | Tomas Mraz <tm@t8m.info> | 2005-10-20 17:01:06 +0000 |
| commit | d9b712775c5f1962d3490b43465537c3e28a8c49 (patch) | |
| tree | c9cf9e640727cd38b13f30b5b612d6da9357952a /modules/pam_xauth/pam_xauth.8 | |
| parent | 593ea15559fedf71fdb6e6fdc23a8f2532f7d571 (diff) | |
| download | pam-d9b712775c5f1962d3490b43465537c3e28a8c49.tar.gz pam-d9b712775c5f1962d3490b43465537c3e28a8c49.tar.bz2 pam-d9b712775c5f1962d3490b43465537c3e28a8c49.zip | |
Relevant BUGIDs: Red Hat bz 171164
Purpose of commit: new feature
Commit summary:
---------------
2005-10-20 Tomas Mraz <t8m@centrum.cz>
* configure.in: Added check for xauth binary and --with-xauth option.
* config.h.in: Added configurable PAM_PATH_XAUTH.
* modules/pam_xauth/README,
modules/pam_xauth/pam_xauth.8: Document where xauth is looked for.
* modules/pam_xauth/pam_xauth.c (pam_sm_open_session): Implement
searching xauth binary on multiple places.
(run_coprocess): Don't use execvp as it can be a security risk.
Diffstat (limited to 'modules/pam_xauth/pam_xauth.8')
| -rw-r--r-- | modules/pam_xauth/pam_xauth.8 | 9 |
1 files changed, 5 insertions, 4 deletions
diff --git a/modules/pam_xauth/pam_xauth.8 b/modules/pam_xauth/pam_xauth.8 index 9acb7249..897b43fa 100644 --- a/modules/pam_xauth/pam_xauth.8 +++ b/modules/pam_xauth/pam_xauth.8 @@ -1,11 +1,11 @@ .\" Copyright 2001,2003 Red Hat, Inc. .\" Written by Nalin Dahyabhai <nalin@redhat.com>, based on the original .\" version by Michael K. Johnson -.TH pam_xauth 8 2003/7/24 "Red Hat Linux" "System Administrator's Manual" +.TH pam_xauth 8 2005/10/20 "Red Hat Linux" "System Administrator's Manual" .SH NAME pam_xauth \- forward xauth keys between users .SH SYNOPSIS -.B session optional /lib/security/pam_xauth.so \fIarguments\fP +.B session optional pam_xauth.so \fIarguments\fP .SH DESCRIPTION pam_xauth.so is designed to forward xauth keys (sometimes referred to as "cookies") between users. @@ -45,8 +45,9 @@ the import and export files can be empty, signifying that no users are allowed. .SH ARGUMENTS .IP debug Turns on debugging messages sent to syslog. -.IP xauthpath=\fI/usr/X11R6/bin/xauth\fP -Specify the path the xauth program (the default is /usr/X11R6/bin/xauth). +.IP xauthpath=\fI/path/to/xauth\fP +Specify the path the xauth program (it is expected in \fB/usr/X11R6/bin/xauth,\fP +or \fB/usr/bin/xauth\fP, or \fB/usr/bin/X11/xauth\fP by default). .IP systemuser=\fInumber\fP Specify the highest UID which will be assumed to belong to a "system" user. pam_xauth will refuse to forward credentials to users with UID less than or |