[OpenAFS-devel] [PATCH] new features for pam_afs

Carsten Jacobi carsten@ccac.rwth-aachen.de
Tue, 28 Aug 2001 11:48:36 +0200


On Mon, Aug 27, 2001 at 04:52:41PM -0400, Derrick J Brashear wrote:

> --
> <P><DT><B><TT>use_klog</TT>
> </B><DD>Activating this switch the authentication is done by calling the
> external program "klog"
> One program requiring this is for example <i>kdm</i> of KDE 2.x.<br></DD>
> --
> 
> Can you offer details as to why this was the case?

Hmm, I can give you a translation of the original site at
http://www.tu-chemnitz.de/urz/afs/afs_pam.html
where Thomas Mueller introduces his changes:
"- use_klog
The PAM-Module is forced to use the program klog to verify the identity of the
user and fetch a token respectively. Because of problems in the interactions of
the memory management of applications with the PAM module it may be necessary
that the PAM module is performing the authentication not directly with the
authentication server by itself (neither in the main process nor in a sub
process), but call the external program klog (i.e. kdm from KDE 2.x)
"

Does this answer your question?

Carsten Jacobi