7 Commits

Author	SHA1	Message	Date
Lennart Poettering	971c07fc68	pam: fix typo try_authtok → use_authtok ... This was a copy/paste mistae apparently, there's not "try_authtok" and this was supposed to copy what Fedora uses, which uses "use_authtok" correctly. Hence adjust this. Fixes: #19369	2021-05-12 12:14:17 +02:00
Lennart Poettering	26cf9fb7f8	home: add pam_systemd_home.so PAM hookup ... In a way fixes: https://bugs.freedesktop.org/show_bug.cgi?id=67474	2020-01-28 22:36:41 +01:00
Lennart Poettering	4c92bf408d	factory: include pam_keyinit.so in PAM factory configuration ... We use the keyring, so let's make sure it gets properly initialized for sessions in factory reset mode.	2019-07-13 11:06:24 +02:00
Lennart Poettering	29d30ae7b6	factory: add comment to PAM file, explaining that the defaults are not useful	2019-07-13 11:06:24 +02:00
Lennart Poettering	ed40cb82f7	factory: tighten PAM configuration ... Apparently PAM reacts differently on different systems (?) and if no authoritative matching module is found might either succeed/fail, depending on the system. Let's lock this down explicitly, by hooking in pam_deny.so. Of course, these PAM files are just examples, and no distro in its right mind would ship these unmodified, but let's default to something safe. Fixes: #12950	2019-07-13 11:06:24 +02:00
Kay Sievers	c009072ec5	factory: remove broken pam_limits ... Stupid PAM, please just go away! login[26]: pam_limits(login:session): error parsing the configuration file: '/etc/security/limits.conf' login[26]: pam_unix(login:session): session opened for user root by LOGIN(uid=0) login[26]: Error in service module	2014-07-30 15:21:54 +02:00
Kay Sievers	32767cb1e8	login: update systemd-user PAM configuration file	2014-07-29 13:20:20 +02:00