PAM-MySQL

FAQ

From the package documentation:

What on earth is PAM anyway?
Are there any tools for changing passwords etc. that are in PAM-MySQL?
I need to retrieve misc. UNIX user information such as one's home directory coming from MySQL. Can pam-mysql do this?
How can I quickly tell in which way a given password is encrypted, PASSWORD(), CRYPT()-ed, or md5()?
I set up saslauthd (of Cyrus-SASL) to use PAM-MySQL for authentication and noticed some authentication mechanisms such as CRAM-MD5 don't work. Why?
PAM-MySQL is licensed under GNU Public License and I heard that GPL requires the program that links to a GPL'ed shared binary object at runtime also being covered by GPL. Is it safe to use PAM-MYSQL from a program with a license that is incompatible with GPL?
I was able to build PAM-MySQL without problems, but MD5 doesn't work. Why?

Posted by Moriyoshi Koizumi | Thu, 30 Jun 2005 22:35 | permalink

Dealing with configure failure.

A user reported that configure did't work spewing the following error during config.status:

config.status: creating Makefile
sed: file .../subs-2.sed line 39: unterminated `s' command
config.status: creating config.h
config.status: executing default-1 commands

This happens when you use any old version (< 4.0.16) of MySQL. Although this is a bug and to be addressed in the next release, consider updating your MySQL installation.

Posted by Moriyoshi Koizumi | Fri, 17 Jun 2005 12:00 | permalink

Documentation errata

There are some errors found in the documentation bundled in the yesterday releases. This by no means indicates any implementation bug.

README: add a description for the "md5" option, which makes pam_mysql use MD5 crypt with the "crypt" option set to "Y".
README (0.7 only): in the description of the "config_file" option, "users.use_md5" directive is wrongly explained that its counterpart is "where" option. That is actually the "md5" option and "users.where_clause" is the correct directive that has "where" as its counterpart.

Posted by Moriyoshi Koizumi | Tue, 14 Jun 2005 14:26 | permalink

Related pages

From the package documentation

Posted by Moriyoshi Koizumi | Tue, 14 Jun 2005 12:01 | permalink

Package README

Until some up-to-date document is ready, we provide several old documents for reference.

Posted by Moriyoshi Koizumi | Tue, 14 Jun 2005 09:02 | permalink

Installation instruction

From the package documentation:

Posted by Moriyoshi Koizumi | Sun, 12 Jun 2005 12:20 | permalink

pam-mysql is back!

After days of silence since the last release, we're finally back!

The upcoming release, version 0.6, features the cool hybrid of contributions by many people and tons of bug fixes. The complete list of the changes is as follows:

Adopted autoconf / automake for build system. (moriyoshi)
Portable MD5 support by using OpenSSL / Cyrus-SASL. (moriyoshi)
MySQL library detection. (moriyoshi)
Added RPM spec file. (moriyoshi)
Tidied up the entire code for security and maintainability. (moriyoshi)
Modified log output to be more verbose. (moriyoshi)
Changed log facility type to LOG_AUTHPRIV as per the recommendation in the PAM documentation. Falls back to LOG_AUTH on the platform that lacks it. (moriyoshi)
Added support for unix socket and non-default ports. (moriyoshi)
Added account management and authentication token alteration code. moriyoshi)
Remove default values for string parameters for the sake of performance. moriyoshi)
Enhanced SQL logging function to log session state as well. (moriyoshi)
Solaris support. (moriyoshi)

We would thank all the people who helped us to get it out the door.

Moriyoshi

Posted by Moriyoshi Koizumi | Sun, 12 Jun 2005 10:50 | permalink