diff options
| author | des <des@FreeBSD.org> | 2001-12-07 00:37:10 +0000 |
|---|---|---|
| committer | des <des@FreeBSD.org> | 2001-12-07 00:37:10 +0000 |
| commit | 50d70990d701cb1ee392d02724839a26b2aca5ca (patch) | |
| tree | 8484c72ae085f16b72e32b94ecc6d820f4a593cd /lib/libc/string/strerror.c | |
| parent | 8e7db8a91bfeaec352082d7156f7e9aa98c93e9f (diff) | |
| download | FreeBSD-src-50d70990d701cb1ee392d02724839a26b2aca5ca.zip FreeBSD-src-50d70990d701cb1ee392d02724839a26b2aca5ca.tar.gz | |
Although the previous went some way towards fixing the pam.conf / pam.d
problem, it still didn't DTRT for services that did not have a service-
specific policy if /etc/pam.d existed but did not contain an "other"
policy. This fixes the problems some people have experienced with sudo.
And I almost didn't have to use goto.
The current configuration sequence is:
1) Look for /etc/pam.d/foo
2) If PAM_READ_BOTH_CONFS is defined, or step 1) failed, look for
foo in /etc/pam.conf
3) Look for /etc/pam.d/other (to fill in the gaps)
4) If PAM_READ_BOTH_CONFS is defined, or step 3) failed, look for
other in /etc/pam.conf
I believe this is the intended behaviour of the original code. The least
surprising behaviour seems to be when PAM_READ_BOTH_CONFS is not defined -
/etc/pam.d/foo will be preferred over /etc/pam.conf, but the latter will
serve as a backup if the former does not exist.
Sponsored by: DARPA, NAI Labs
Diffstat (limited to 'lib/libc/string/strerror.c')
0 files changed, 0 insertions, 0 deletions
