PAM ListMySQL Module 0.1.3 review
DownloadPAM ListMySQL Module joins the functionality of both pam_mysql and pam_listfile
|
|
PAM ListMySQL Module joins the functionality of both pam_mysql and pam_listfile. PAM ListMySQL Module is used to search a list of tokens (pam_listfile) using a MySQL database as a source (pam_mysql).
Options:
The module options are listed below with default in ()s:
user("nobody")
The user with access to open the connection to MySQL
and has permission to read the table with the passwords.
passwd("")
Password for the MySQL user.
host("localhost")
Machine that is running the MySQL server.
db("mysql")
Name of database that contains the table with the user/password
combos.
table("user")
Name of table that you want to use for the user/password checking.
This can be a series of tables with full JOIN-style syntax if you
want more complex control. For example:
[table=Host LEFT JOIN HostUser ON HostUser.host_id=Host.id
LEFT JOIN User ON HostUser.user_id=User.id]
column("user.User")
Name of column that has the field describint the type identified by
type option.
where("")
Used to specify additional criteria for the query. Not that you probably
need to use libpam's extended option format. For example:
[where=Host.name="web" AND User.active=1]
item("user")
Type of data to be searched for, can be one of:
user|tty|rhost|ruser|group|shell
sense("allow")
Action to take if found in table, if the item is NOT found in the table,
then the opposite action is requested (can be allow or deny)
conf_file("/etc/security/listmysql.conf")
Set the path of the configuration file, see the configuration example in
order to learn the syntax
Requirements:
PAM
MySQL server
What's New in This Release:
MySQL options may now go in a configuration file, in order to protect them with file permissions.
Small bugfixes.
Updated documentation.
PAM ListMySQL Module 0.1.3 search tags