summary |
shortlog |
log |
commit | commitdiff |
tree
raw |
patch |
inline | side by side (from parent 1:
a48c92e)
The changes to common-account make the custom account section of
pam.d/cron unneeded.
# The PAM configuration file for the cron daemon
#
# The PAM configuration file for the cron daemon
#
+# cron uses pam_set_cred so it needs a working auth section. It does not do
+# any other real authentication.
auth sufficient pam_unix.so
auth sufficient pam_unix.so
-# This is required instead of sufficient, since pam_unix mostly does checks
-# based on NSS, so this will also work for ldap users.
-account required pam_unix.so
-# We use a custom control spec so we won't fail on user_unknown special
-account [success=ok new_authtok_reqd=ok user_unknown=ignore ignore=ignore default=bad] pam_ldap.so