Petition for the inclusion of PAM in the next Slackware release
SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Niki, how about offering CentOS or a RHT subscription to your prospective PAM customers? leave Slackware alooooone Or at least leave 14.2 alone, then have fun with the next version.
This post was inspired by searching for Linux-PAM security issues. Good luck mancha!
Last edited by EYo; 12-04-2014 at 08:58 AM.
Reason: pointless snark
The problem with including PAM by default to aim at Corporate level needs is problematic, because Slackware doesn't aim at workstations, home users, data centers, enterprise, or any level of personal or corporate needs.
Yet, Slackware ships by default Apache HTTPD, BIND and other nice thingies which any "casual desktop user" cannot live without them...
Dear "casual desktop user", you known that you typical Slackware installation contains a complete DNS server and LAMP stack, capable to succesfully drive everything you need to host your personal collection of around 100 various sites, as blogs, CMSs or even nice thingies like a University e-Learning Portal like Moodle? How you comment?
Niki, how about offering CentOS or a RHT subscription to your prospective PAM customers? leave Slackware alooooone Or at least leave 14.2 alone, then do your worst as Slackware becomes just another node in the Internet of Things.
This post was inspired by searching for Linux-PAM security issues. Good luck mancha!
Most likely, the biggest security issue for a casual desktop user will be his amazing complicated password (literally: "password"), while at enterprise level, most likely the bad guys will enter in the room via exploiting a MYSQL or PHP security issue. And to NOT to talk about the glorious bad written PHP code, made by the barely literate programmers...
How about to leave us alooooone, dear ultra-orthodox-die-hard-PAM-hater friend?
Last edited by Darth Vader; 12-04-2014 at 09:07 AM.
Dear "casual desktop user", you known that you typical Slackware installation contains a complete DNS server and LAMP stack, capable to succesfully drive everything you need to host your personal collection of around 100 various sites, as blogs, CMSs or even nice thingies like a University e-Learning Portal like Moodle? How you comment?
while yes, i do, dear Vader
i casually used vsftpd to share files with windows boxes
bdw
apache mmm, ngix better
for static pages any of the simpler http servers is better then those two
PS you can do it PAM ! You can beat thingD in number of posts !
i belief in you
How about to leave us alooooone, dear ultra-orthodox-die-hard-PAM-hater friend?
Will do!
Edit: I mean stop whining. silly britnyspeers(?) humor. I hate nobody, I'm just an old hippie chick who sees Pat (and team) as the last hackers willing to package the binaries I want in a well documented commercial distribution. I didn't mean to harsh Niki's buzz either. Cheers to learning how to build stuff and keeping it fun!
Last edited by EYo; 12-04-2014 at 04:20 PM.
Reason: sorry whinge
while yes, i do, dear Vader i casually used vsftpd to share files with windows boxes
bdw
apache mmm, ngix better
for static pages any of the simpler http servers is better then those two
PS you can do it PAM ! You can beat thingD in number of posts !
i belief in you
Then we agree that no "casual Slackware desktop user" can live without his personal DNS/LAMP stack?
So, let's see the bright side of PAM for our "casual desktop user": single sign-on per session. As in, i.e. KDE will ask you one time the root password to do things as root.
PS. And the setting the clock in KDE will work like a charm, again, after looong time...
Then we agree that no "casual Slackware desktop user" can live without his personal DNS/LAMP stack?
So, let's see the bright side of PAM for our "casual desktop user": single sign-on per session. As in, i.e. KDE will ask you one time the root password to do things as root.
PS. And the setting the clock in KDE will work like a charm, again, after looong time...
sure, why not
isn't the point of all the *kit crap to provide that keyring things ?
why didn't kde's clock work ?
ntpd+locale, idk what else is needed
Dear Darth,
I may want to mess about with a LAMP setup sometime on my casual pure desktop, and if I do, all the software is there - ready and waiting for me. Plus all the other stuff I don't use now, but might want to in the future. Such as, as you suggest: barely literate programming. As my grandma used to say: "Leave it where it is, it's eating nowt."
P.S.
I think your light sabre needs charging.
And as recently expressed by someone else in another thread which I cannot find at the moment:
Every time I hear the word enterprise I hear the Star Trek theme music playing in the background.
And I was doing so well staying clear of this thread. Credit for the Star Trek joke belongs to Fab of Linux Outlaws, but it was my post here that referenced it: https://www.linuxquestions.org/quest...ml#post5272489
I've also written two negative posts in previous PAM threads in my short time here on LQ. When I changed over to Slackware from Debian this fall it was partly in frustration over a PAM related problem they have. So, I did in fact consider lack of PAM a feature, though it wasn't the main factor. My main interest in Slackware came from OpenBSD not liking my video card, it being most BSD of the linux dists that I know about, GNU guix being too early in its development, Slackware having an interesting take on package systems, and my wanting to experiment with compiling as much software as I have time for with no package system scaffolding and directly from HEAD in source control.
I don't run a server, I have but one machine running Slackware, have found so far that shadow's wheel su restriction to be as much as I've wanted to tweak among the login/authorization gunk available, am not terribly well informed about PAM (e.g. if it's the road to LDAP on Linux, what's nsswitch for then?), was told just this morning by my best friend that I'm a very negative person, and probably won't be in your community more than a year or two depending on how certain OpenBSD drm or 2d nvidia driver efforts go. I'd rather not see PAM but no one should give my opinion much weight. I wouldn't agree that I wouldn't notice its inclusion, but I would agree it probably wouldn't cause me any great pain unless it were done badly. So if its lack is putting people out...
I'll see if I can't make this my last PAM related post.
I wonder what "immediate future" means in Slackware space-time continuum
In a relativistic universe, it may have already happened, but the information has not reached you yet.
For the record, I am not anti-PAM. I accept that, in a corporate environment, a central authentication mechanism is necessary to meet user demands. PAM is the obvious and only realistic solution.
My concern is with the demands that corporate needs place on the Slackware development team. There are no paid support staff, only willing volunteers, whose sacrifice of time and effort leaves me in awe.
Slackware is differentiated by this development model. A cheap accusation would be that Slackware leeches on the work of others, but that discounts the effort that goes into investigating alternatives arising from open source development and choosing the best of breed solution available. To me, this development model leads to a distribution that is accessible to anyone with a desire to learn, yet allows a sophisticated user to adapt it to their needs. The work of vbatts and ivandi on PAM shows what is possible.
My other concerns with addressing corporate needs are with the provision of high quality documentation and appropriate tools. I recognise that kikinovak provides suitable documentation but others will need to step up to the plate. Who will provide rapid deployment tools like puppet?
As someone who does not have his own ISP can you explain to me what PAM does. I know, from a comment about kerberos, that PAM does something for network authentication, but what?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.