Petition for the inclusion of PAM in the next Slackware release
SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Then please let us know how you manage central authentication and roaming profiles for your users. I'm asking, because so far I've only had three different answers to that question in similar threads:
"I don't use central authentication." (fine for you)
"NIS is fine." (no, it's not, it's a security nightmare)
"My wife tells her students to use USB disks." (sic, no comment)
I frankly don't know what to say here.
I am number 1 in your list - I don't use central authentication. I do use centrally assigned UIDs/GIDs so that things like NFS and group resources spread across multiple hosts have consistent meaning.
Does that make my systems "less enterprise"?
My point was not about how each of us does a given thing, it was about the repeated use of the word "enterprise" to differentiate "levels" of system, and the implicit assumption that "enterprise" must include "PAM" or other central directory/authentication system. That use disparages systems (Slackware) and users who do not use central services as somehow of "less" merit.
Slackware is an excellent other choice for users and, "enterprises**" who manage their systems and users according to a different paradigm. Many distros include those other services by default and such users must work around them. Slackware excludes them by default making these users lives simpler, while those who need them may add them.
**"Enterprise" is one of those words we all pretend to agree on the meaning of, but which is very vague, ill defined and mostly without meaning when you actually try to grab hold of it. My comments were more directed at use of the word as a definitive term, rather than whether Pat adds PAM to Slackware.
(By the way, I don't think I have ever said Thanks Kikinovac, for you various contributions. Thanks!)
this is an important question that has a clear and unambiguous answer. vertically integrated enterprise delivers cloud based solutions that lock in future growth potential. now give me your money.
Yes - I think that while a conservative approach has been useful, I'd imagine that PAM has matured enough to be included. And it would make integration with other systems a lot simpler. I support.
Last edited by Mark Pettit; 12-04-2014 at 04:33 AM.
Reason: Typo
[*]The casual desktop user won't have to change any of his habits. The presence of PAM will most certainly go unnoticed.
I was not aware there were casual desktop users using Slackware. Always figured they used other flavors of Linux. It will be noticed. It adds yet another layer of complexity that I just don't need or want. I have to deal with PAM in a few other distributions I maintain. It's not a huge thing, but it's nice not having to deal with it in Slackware.
Quote:
If you run Slackware on your servers and would like your favourite distribution to include PAM, let your voice be heard in this thread.
This implies I should not be posting to this thread unless I want to sign on. I do run Slackware on my servers, but I would prefer that PAM not be included in my favorite distribution. So no "signature" from me.
I do not know what is an enterprise Linux. I only maintain a bunch of Slackware servers in some little companies here in my corner of the city. I have had no need of PAM until now but I will accept it if PV sees it fit to use in the distribution.
None the less I think that it must be proven that my root account can not be locked by some shenanigans of PAM. If it can be so asserted I am all for it as I can use it to simplify some operations, otherwhise it's a nono in my book. It's my computer and I don't need training wheels to deal with it.
The problem with including PAM by default to aim at Corporate level needs is problematic, because Slackware doesn't aim at workstations, home users, data centers, enterprise, or any level of personal or corporate needs. It aims for a broad spectrum of instances and gives you the tools to take up the task of localizing packages rebuilt to your specific needs by means of slackpkg's blacklist and allowing you to use slackpkg.conf to target in-house packages rather than the default packages.
Even then, how do we deploy PAM, or which PAM implementation will suit Slackware best? There are numerous configurations of PAM, and several implementations. So do we aim PAM settings at a generalized audience, or corporate enterprise level, and where does that leave the non-corporate users of Slackware? Plus, on top of this, now SlackWiki will need to incorporate a wiki for setting up PAM, configuring PAM, etc. and a person has to do all of this because questions are going to be asked.
So again I ask the question? How come you can't maintain your own PAM packages using the tools provided by Slackware, namely slackpkg using blacklist and slackpkg.conf to your advantage, targeted towards your specific needs, for your specific company, for your specific security specifications?
this is an important question that has a clear and unambiguous answer. vertically integrated enterprise delivers cloud based solutions that lock in future growth potential. now give me your money.
Enterprise class Linux does not necessarily mean commercial Linux. This is a confusion I often have to clarify for my students. Enterprise quality denotes a series of characteristics in a distribution like the support and release cycle, the availability of low-risk updates, etc.
All the RHEL spinoffs like CentOS, Scientific Linux and Springdale Linux fall into the enterprise class category, though they are 100 % free as in speech as well as in beer.
While Slackware is not exactly an enterprise-class distro, the relatively extended support period of roughly five years makes it usable in a professional environment, at least compared to Fedora or openSUSE with a ridiculously short support period of 18 months.
Last but not least, don't forget that Slackware is a commercial distribution in the sense that you can buy it.
The way I see it, things are very simple: someone needs a certain functionality and politely asks the maintainer if this could be arranged in the future. That's it.
Quote:
How come you can't maintain your own PAM packages using the tools provided by Slackware, namely slackpkg using blacklist and slackpkg.conf to your advantage, targeted towards your specific needs, for your specific company, for your specific security specifications?
Following this logic, we can ask users to maintain their own desktop environment or specific packages, if they are not included in Slackware or SBo. Some people can, some cannot, and others just have to draw a line somewhere if things become too much. I am not playing Niki's advocate, just my opinion...
I'm a casual user, too (as casual as possible, without falling asleep). Slackware is for anybody who wants it, it's an all-purpose, comprehensive distro. I'll leave it to Pat & the Team to decide if they want to create and include an "official" PAM package or not. But its use should be optional. Off by default, preferably.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
It will be noticed. It adds yet another layer of complexity that I just don't need or want. I have to deal with PAM in a few other distributions I maintain. It's not a huge thing, but it's nice not having to deal with it in Slackware. 
