Audit-0.6.3 released

Valdis.Kletnieks at vt.edu Valdis.Kletnieks at vt.edu
Mon Feb 21 20:18:55 UTC 2005


On Sun, 20 Feb 2005 16:26:49 EST, Steve Grubb said:

> Pam_audit was updated to write loginuid to /proc/pid/loginuid. Because of the
> way pam works, this is done in the parent process and the login uid is 
> inherited by the child. This does not work for sshd because of privilege 
> separation. I'll have to patch that directly.

OK, I'm a PAM idiot, and the manpage doesn't help much...

It's unclear where pam_audit should be placed relative to other pam exits.

For that matter, it's unclear if I can just stick it in the system-auth that
gets included by everybody.  Are there any cases where we *don't* want it in there?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/linux-audit/attachments/20050221/d2928478/attachment.sig>


More information about the Linux-audit mailing list