On Sun, 20 Feb 2005 16:26:49 EST, Steve Grubb said: > Pam_audit was updated to write loginuid to /proc/pid/loginuid. Because of the > way pam works, this is done in the parent process and the login uid is > inherited by the child. This does not work for sshd because of privilege > separation. I'll have to patch that directly. OK, I'm a PAM idiot, and the manpage doesn't help much... It's unclear where pam_audit should be placed relative to other pam exits. For that matter, it's unclear if I can just stick it in the system-auth that gets included by everybody. Are there any cases where we *don't* want it in there?
Description: PGP signature