From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from smtp.gentoo.org (smtp.gentoo.org [134.68.220.30]) by robin.gentoo.org (8.13.4/8.13.4) with ESMTP id j36NDmKh009154 for ; Wed, 6 Apr 2005 23:13:48 GMT Received: from ctb-mesg3.saix.net ([196.25.240.75]) by smtp.gentoo.org with esmtp (Exim 4.43) id 1DJJiO-0002Qf-Ks for gentoo-dev@robin.gentoo.org; Wed, 06 Apr 2005 23:13:41 +0000 Received: from gateway.lan (wblv-146-225-163.telkomadsl.co.za [165.146.225.163]) by ctb-mesg3.saix.net (Postfix) with ESMTP id 26EFA1E9D for ; Thu, 7 Apr 2005 01:13:46 +0200 (SAST) Received: from localhost (localhost.localdomain [127.0.0.1]) by gateway.lan (Postfix) with ESMTP id 959E43A26DB for ; Thu, 7 Apr 2005 01:19:36 +0200 (SAST) Received: from gateway.lan ([127.0.0.1]) by localhost (gateway.lan [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 17617-19 for ; Thu, 7 Apr 2005 01:19:32 +0200 (SAST) Received: from nosferatu.lan (nosferatu.lan [192.168.0.2]) (using TLSv1 with cipher IDEA-CBC-SHA (128/128 bits)) (No client certificate requested) by gateway.lan (Postfix) with ESMTP id 8C4EE3A26DA for ; Thu, 7 Apr 2005 01:19:32 +0200 (SAST) Subject: Re: [gentoo-dev] Pluggable Hell Part 2: Fixing everything up! From: Martin Schlemmer To: gentoo-dev@robin.gentoo.org In-Reply-To: <200504070011.31705@enterprise.flameeyes.is-a-geek.org> References: <200503302215.07876@enterprise.flameeyes.is-a-geek.org> <1112823535.9136.90.camel@nosferatu.lan> <200504070011.31705@enterprise.flameeyes.is-a-geek.org> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-D/HdthREbVCitzcLjs0x" Organization: Gentoo Foundation Date: Thu, 07 Apr 2005 01:17:27 +0200 Message-Id: <1112829447.9136.121.camel@nosferatu.lan> Precedence: bulk List-Post: , , List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Reply-To: gentoo-dev@gentoo.org Mime-Version: 1.0 X-Mailer: Evolution 2.2.1.1 X-Virus-Scanned: by amavisd-new using ClamAV at nosferatu.za.org Content-Transfer-Encoding: 7bit X-Archives-Salt: e6823017-0ab8-4384-8a27-16d0652159dc X-Archives-Hash: 6bc5f569a5e72f5ae953df9f441c69d1 --=-D/HdthREbVCitzcLjs0x Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On Thu, 2005-04-07 at 00:11 +0200, Diego "Flameeyes" Petten=C3=B2 wrote: > > > openpam will pdepend on > > > freebsd-pam-modules to provide both in a simple way. > > Why? What good will they do on linux? Just stick them in bsd profile. > Mainly, openpam is shipped without any kind of module. If someone would l= ike=20 > to replace Linux-PAM with openpam on a Linux system (it's possible), I'd = much=20 > prefer to provide it with everything he needs. Linux-PAM builds its own=20 > modules, openpam just provide pam implementation and needs other packages= to=20 > provide the basic modules. FreeBSD's modules should work on Linux and thi= s=20 > would make possible the switch between Linux-PAM and openpam. >=20 I was more talking about the virtual/pam-modules (or whatever). Having a a PDEPEND is just fine. > > Like I said before, only real reason why I will biatch about this one, > > is its called 'pam' on all linux distro's, and it will be another lost > > history (ok, so the workaround is a schlepp) case without real cause. > Actually it's called libpam usually :) > Mainly, calling it pam is usual on linux-centric systems, but as Gentoo i= s not=20 > only Linux, and "it's all about choice", having it called as it's named,=20 > IMHO, is a way to state clearly what it is. > Just take a look to telnet-bsd and netkit-telnetd. On Debian there's=20 > netkit-telnet which is called just telnet. > Anyway this is only "cosmetic" and for what I "need" or better I feel is=20 > needed, this is something which can be omissed. >=20 Like I said - its more just me than anything else. > > Ugh, no - just more crud that somebody will have to clean out later. > > Like I said, get pam-0.78 and issues fixed, bumped to stable on all > > linux archs, and we can scourge the tree. > That's a decision up to you as pam mantainers :) > Anyway I'm available to add the temporary fixes, trace them, and remove t= hem=20 > when all is done, if needed. >=20 Id rather just do it cleanly. > > > I'll work anyway on a pam_stack hack for openpam, also if I'm not sur= e > > > if, when and how I'll be able to make it work... also I don't like to= o > > > much messing with security stuff :/ > > Sorry, you are on your own here. > I know and I'll try to do everything I can, but if in the mean time it co= uld=20 > be used the other method should be enough until there's a way to "support= "=20 > pam_stack on openpam. >=20 Well, the include should work, be the cleanest and less up and down way (you really do not want to coordinate a big change across the tree in more than one direction more than once - you usually end up burning yourself) - I'll work through the pam bugs for 0.78, and see if we can get it pushed to stable. Thanks, --=20 Martin Schlemmer Gentoo Linux Developer, Desktop/System Team Developer Cape Town, South Africa --=-D/HdthREbVCitzcLjs0x Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQBCVG4HqburzKaJYLYRAsHyAKCFhH8wS6044xMPwePt0HMky2sp8ACeLPG5 FERKLQE3rRXx5Xxar0iylfY= =Xkk6 -----END PGP SIGNATURE----- --=-D/HdthREbVCitzcLjs0x-- -- gentoo-dev@gentoo.org mailing list