7 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Dear All,
Can someone help to command or program to transfer the file from windows to Unix server and from one unix server to another Unix server in secure way.
I would request no samba client. (4 Replies)
Discussion started by: yadavricky
4 Replies
2. Solaris
Greetings! I'm new here and excited to get aquianted with this site! Seems like a good source of knowledge!
Anyways, my first problem de'jour deals with the following....
We have dual monitors(top/bottom) for our system. The problem is that the solaris login window is split between the top... (7 Replies)
Discussion started by: ruberked
7 Replies
3. Solaris
Hey folks, I wish every one is just great. I got to do this:
I'm trying to configure my Solaris 10 clients to Automatically Show the login windows of the Main Server whenever the Client restarts or a user logs out.
By other means, the Client user don't have to Go to Options->Remote-Login->... (5 Replies)
Discussion started by: ua-agent
5 Replies
4. UNIX Desktop Questions & Answers
Dear Friends
I'm using Hp-unix release b.11.11 and i'm facing a problem to login through telnet session. i can login only by user root but other users can not login.
but if i use x window application like (reflection X) all users can login with no problem.
please kindly advice me on how to... (0 Replies)
Discussion started by: hai_jab
0 Replies
5. Solaris
Hi,
I need to get the console window size for an application, for which I used ioctl() by passing the TIOCGWINSZ parameter. The ioctl() function does not fail (returns non zero), but it could not get the window size (gets 0x0). When I tried to verify the window size by the stty -a command, the... (2 Replies)
Discussion started by: diganta
2 Replies
6. UNIX for Dummies Questions & Answers
i recently install redhat linux as a dual boot with win2000. after i log in my unix account. i tried to get window unix by typing startx or xinit. both gave me error. display message among other thing was something like fatal error. any help?
thanks (12 Replies)
Discussion started by: bb00y
12 Replies
7. UNIX for Dummies Questions & Answers
Hi i am new to Unix and i was wondering if you could help me with 2 problems i have?
Firstly i use Telnet to connect to my main server unix-shells.com and i want to know how i can use the "window" program?
i understand how it works but i want to be able to easily make new windows and hide the... (1 Reply)
Discussion started by: ditoa
1 Replies
pam_unix(5) File Formats Manual pam_unix(5)
NAME
pam_unix - authentication, account, session, and password management PAM modules for UNIX
SYNOPSIS
DESCRIPTION
The UNIX service module for PAM, provides functionality for all four PAM modules: authentication, account management, session management
and password management.
The module is a shared object that can be dynamically loaded to provide the necessary functionality upon demand.
For an interpretation of the module path, please refer to the related information in pam.conf(4).
Unix Authentication Module
The UNIX authentication component provides functions to verify the identity of a user, and to set user specific credentials
compares the user entered password (or password retrieved from the user's smart card) with the password from UNIX password database,
including the protected password database for trusted systems. If the passwords match, the user is authenticated. If the user also has
secure RPC credentials and the secure RPC password is the same as the UNIX password, then the secure RPC credentials are also obtained.
The following options may be passed to the UNIX service module:
syslog(3C) debugging information at level.
Turn off warning messages.
It compares the password in the password database with the user's initial
password (entered when the user authenticated to the first authentication module in the stack). If the passwords do not
match, or if no password has been entered, quit and do not prompt the user for a password. This option should only be
used if the authentication service is designated as optional in the configuration file.
It compares the password in the password database with the user's initial
password (entered when the user authenticated to the first authentication module in the stack). If the passwords do not
match, or if no password has been entered, prompt the user for a password.
psd stands for personal security device, for the current implementation
there is only one security device: the smart card. It compares the password in the password database with the password
stored on the user's smart card. With this option the PAM Framework prompt "Enter PIN:" is used instead of the password
prompt. This option is only supported with the authentication or password module types (auth, password) services in the
or in the configuration files.
When prompting for the current password, the UNIX authentication module will use the prompt, "Password:" unless one of the following sce-
narios occur:
1. The option is specified and the password entered for the first module in the stack fails for the UNIX module.
2. The option is not specified, and the earlier authentication modules listed in the file have prompted the user for the pass-
word.
3. The option is specified. In this case, the UNIX authentication module will use the prompt "Enter PIN:".
In cases 1 and 2, the UNIX authentication module will use the prompt "System Password:".
The function sets user specific credentials. If the user had secure RPC credentials, but the secure RPC password was not the same as the
UNIX password, then a warning message is printed. If the user wants to get secure RPC credentials, then keylogin(1) needs to be run.
Unix Account Management Module
The UNIX account management component provides a function to perform account management The function retrieves the user's password entry
from the UNIX password database and verifies that the user's account and password have not expired. For trusted systems, this module also
validates the allowed access time and access terminal based upon the security configuration. The following options may be passed in to the
UNIX service module:
syslog(3C) debugging information at level.
Turn off warning messages.
Unix Session Management Module
The UNIX session management component provides functions to initiate and terminate UNIX sessions. For UNIX, updates the last successful or
unsuccessful login time in the protected password database for trusted mode. The account management module reads the information to dis-
play the previous time the user logged in.
The following options may be passed in to the UNIX service module:
syslog(3C) debugging information at level.
Turn off warning messages.
is a NULL function.
Unix Password Management Module
The UNIX password management component provides a function to change passwords in the UNIX password database. This module must be in It
can not be or The following options may be passed in to the UNIX service module:
syslog(3C) debugging information at level.
Turn off warning messages.
It compares the password in the password database with the user's old
password (entered to the first password module in the stack). If the passwords do not match, or if no password has been
entered, quit and do not prompt the user for the old password. It also attempts to use the new password (entered to the
first password module in the stack) as the new password for this module. If the new password fails, quit and do not
prompt the user for a new password.
It compares the password in the password database with the user's old
password (entered to the first password module in the stack). If the passwords do not match, or if no password has been
entered, prompt the user for the old password. It also attempts to use the new password (entered to the first password
module in the stack) as the new password for this module. If the new password fails, prompt the user for a new password.
It prompts the user for the PIN (with the PIN, the PAM Framework can
retrieve a password from the smart card) and the old password is retrieved from the smart card. It compares the password
in the password database with the user's old password. If the passwords match, it prompts the user for a new password.
If the user's password has expired, the UNIX account module saves this information in the authentication handle using The UNIX password
module retrieves this information from the authentication handle using to determine whether or not to force the user to update their pass-
word.
APPLICATION USAGE
On trusted systems, the interfaces implemented in the UNIX service module, are not thread-safe. Otherwise, they are thread-safe. A can-
cellation point may occur while a thread is executing any of these interfaces. They are not cancel-safe, async-cancel-safe, nor async-sig-
nal-safe.
WARNINGS
HP-UX 11i Version 3 is the last release to support trusted systems functionality.
SEE ALSO
keylogin(1), pam(3), pam_authenticate(3), pam_setcred(3), syslog(3C), nsswitch.conf(4), pam.conf(4), pam_user.conf(4).
pam_unix(5)