Revision 22715,
1.1 KB
checked in by tabbott, 17 years ago
(diff) |
libpam-mktemp is a new module generalizing libpam-xauthority and is
intended to replace it; it can also be used to handle
ATHENA_SESSION_TMPDIR.
|
Line | |
---|
1 | This is the README for pam_mktemp, a PAM SESSION module which will |
---|
2 | securely create a temporary file (ands set an environment variable to |
---|
3 | point to it) in pam_open_session, and unlinks the file in |
---|
4 | pam_close_session. |
---|
5 | |
---|
6 | This is useful for applications like setting XAUTHORITY to a secure |
---|
7 | temporary file in an environment where home directories are in a |
---|
8 | network filesystem. You would do this adding: |
---|
9 | |
---|
10 | session optional pam_mktemp.so var=XAUTHORITY prefix=/tmp/xauth |
---|
11 | |
---|
12 | to /etc/pam.d/common-session. |
---|
13 | |
---|
14 | You must specify the var option; the prefix option defaults to |
---|
15 | /tmp/tempfile if not specified. The argument passed to mkstemp when |
---|
16 | creating this file will be /tmp/xauth-UID-XXXXXX, where UID is the |
---|
17 | user id for the session being opened. |
---|
18 | |
---|
19 | It supports two additional options: debug (enabling debugging output) |
---|
20 | and an dir (which causes pam_mktemp to create a temporary directory, |
---|
21 | rather than a temporary file). So, the pam_mktemp line session line |
---|
22 | to create a login session temporary directory might look like: |
---|
23 | |
---|
24 | session optional pam_mktemp.so debug dir prefix=/var/tmp var=SESSION_TEMPDIR |
---|
Note: See
TracBrowser
for help on using the repository browser.