PAM and arla

[Michele A. Trovero]

Charles

Here are some choices I ran into (BTW, use the list archives, they are
all mentioned somewhere):

Derrick Brashear's modules
    {ftp://ftp.dementia.org/pub/pam} You will need
    pam_krb4 and pam_afstok. Very likely it will not compile with KTH-KRB 
    out of the box. At least, it does not for me.
Chris Wing's module
    {http://www-personal.engin.umich.edu/~wingc/pam_kafs.html}. It
    seems full-featured, but I haven't tried it yet.  
Tobias Schaefer's pam_linux_afs 
    {http://www.uni-hohenheim.de/~schaefer/linux/pam/}. As you
    know, Tobias' module actually works by forking a copy of klog. To make it
    work with kauth, either you hack his code, or you get
    Chris Wing's klog {http://www-personal.engin.umich.edu/~wingc/kthkrb/} which is a
    PERL wrapper for kauth so as to make it act as klog. You may 
    want to use the patch to kauth to add some options.
Nalin Dahyabhai's pam_krb4afs {http://www4.ncsu.edu/~nsdahya1/}. That's
    what I am using. It does the job. 

Best,
Michele


On Wed, 7 Jul 1999, Charles Karney wrote:

> I have been using the MIT version of AFS for Linux (2.0.x) with Tobias
> Schaefer's pam_linux_afs module for authentication + tokens.  This invokes
> the klog command to do the authentication and the whole package works fine
> 
> Recently, I've installed arla (0.25) and kth-krb (0.9.9) and would like to
> get AFS tokens automatically.  I tried specifying
> 
>     klog_program /usr/athena/bin/kauth
> 
> to pam_linux_afs (i.e., the kth-krb kauth program).  However this bombs
> because pam_linux_afs tries to invoke it as
> 
>     /usr/athena/bin/kauth karney -silent -pipe
> 
> with the -pipe indicating that the password is delivered via stdin.  I
> could hack together a script to run kauth via expect, but I wonder if
> anyone has a neater solution.
> 
> -- 
> Charles Karney
> Plasma Physics Laboratory	  E-mail:  Karney at Princeton.EDU
> Princeton University		  Phone:   +1 609 243 2607
> Princeton, NJ 08543-0451	  FAX:	   +1 609 243 3438
>