Re: Audit-0.6.3 released
On Sun, 20 Feb 2005 16:26:49 EST, Steve Grubb said:
Pam_audit was updated to write loginuid to /proc/pid/loginuid.
Because of the
way pam works, this is done in the parent process and the login uid is
inherited by the child. This does not work for sshd because of privilege
separation. I'll have to patch that directly.
OK, I'm a PAM idiot, and the manpage doesn't help much...
It's unclear where pam_audit should be placed relative to other pam exits.
For that matter, it's unclear if I can just stick it in the system-auth that
gets included by everybody. Are there any cases where we *don't* want it in there?
Attachments:
- attachment.sig (application/pgp-signature — 226 bytes)