From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <ldv@altlinux.org>
Date: Wed, 24 Jun 2009 15:12:49 +0400
From: "Dmitry V. Levin" <ldv@altlinux.org>
To: ALT Linux Community general discussions <community@lists.altlinux.org>
Message-ID: <20090624111249.GB26122@wo.int.altlinux.org>
References: <d77783290906182346n480d72c2s739ff140ff37884a@mail.gmail.com>
	<20090619233836.GA15680@wo.int.altlinux.org>
	<d77783290906212341n3ab5be5fna1e6030eb00aac59@mail.gmail.com>
	<20090622164824.GA7698@wo.int.altlinux.org>
	<d77783290906240131p13b3b6a5ha2109bb141aa6633@mail.gmail.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="IrhDeMKUP4DT/M7F"
Content-Disposition: inline
In-Reply-To: <d77783290906240131p13b3b6a5ha2109bb141aa6633@mail.gmail.com>
X-fingerprint: FE4C 93AB E19A 2E4C CB5D  3E4E 7CAB E6AC 9E35 361E
Subject: Re: [Comm] =?koi8-r?b?InBhbV9tb3VudCBwYXNzd29yZDoiIC0gzsXBy8vV0sHU?=
	=?koi8-r?b?zsXO2MvPIMvByy3Uzw==?=
X-BeenThere: community@lists.altlinux.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: ALT Linux Community general discussions
	<community@lists.altlinux.org>
List-Id: ALT Linux Community general discussions <community.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/options/community>,
	<mailto:community-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/community>
List-Post: <mailto:community@lists.altlinux.org>
List-Help: <mailto:community-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/community>,
	<mailto:community-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jun 2009 11:12:49 -0000
Archived-At: <http://lore.altlinux.org/community/20090624111249.GB26122@wo.int.altlinux.org/>
List-Archive: <http://lore.altlinux.org/community/>
List-Post: <mailto:mandrake-russian@linuxteam.iplabs.ru>


--IrhDeMKUP4DT/M7F
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Jun 24, 2009 at 01:31:29PM +0500, =D0=94=D0=B5=D0=BD=D0=B8=D1=81 =
=D0=A7=D0=B5=D1=80=D0=BD=D0=BE=D1=81=D0=BE=D0=B2 wrote:
> 22 =D0=B8=D1=8E=D0=BD=D1=8F 2009 =D0=B3. 21:48 =D0=BF=D0=BE=D0=BB=D1=8C=
=D0=B7=D0=BE=D0=B2=D0=B0=D1=82=D0=B5=D0=BB=D1=8C Dmitry V. Levin (ldv@altli=
nux.org) =D0=BD=D0=B0=D0=BF=D0=B8=D1=81=D0=B0=D0=BB:
> > =D0=A2=D1=83=D1=82 =D0=BD=D0=B0=D0=BF=D0=B8=D1=81=D0=B0=D0=BD=D0=BE, =
=D1=87=D1=82=D0=BE =D0=B5=D1=81=D0=BB=D0=B8 =D0=B2=D1=8B =D0=B4=D0=BE=D0=B1=
=D0=B0=D0=B2=D0=BB=D1=8F=D0=B5=D1=82=D0=B5 =D1=87=D1=82=D0=BE-=D1=82=D0=BE =
=D0=B2 =D1=81=D1=82=D0=B5=D0=BA =D0=BF=D0=BE=D1=81=D0=BB=D0=B5 sufficient, =
=D1=82=D0=BE
> > =D0=B5=D1=81=D1=82=D1=8C =D0=BD=D0=B5=D0=BD=D1=83=D0=BB=D0=B5=D0=B2=D0=
=B0=D1=8F =D0=B2=D0=B5=D1=80=D0=BE=D1=8F=D1=82=D0=BD=D0=BE=D1=81=D1=82=D1=
=8C =D1=82=D0=BE=D0=B3=D0=BE, =D1=87=D1=82=D0=BE =D1=8D=D1=82=D0=BE =D1=87=
=D1=82=D0=BE-=D1=82=D0=BE =D0=BD=D0=B5 =D0=B1=D1=83=D0=B4=D0=B5=D1=82 =D0=
=B2=D1=8B=D0=BF=D0=BE=D0=BB=D0=BD=D0=B5=D0=BD=D0=BE.  =D0=AD=D1=82=D0=BE
> > =D1=83=D1=82=D0=B5=D1=80=D0=B6=D0=B4=D0=B5=D0=BD=D0=B8=D0=B5 =D0=B2=D0=
=B5=D1=80=D0=BD=D0=BE, =D0=BE=D0=B4=D0=BD=D0=B0=D0=BA=D0=BE =D0=B8=D0=B7 =
=D0=BD=D0=B5=D0=B3=D0=BE =D0=BD=D0=B5 =D1=81=D0=BB=D0=B5=D0=B4=D1=83=D0=B5=
=D1=82, =D1=87=D1=82=D0=BE =D0=BD=D0=B5=D0=BE=D0=B1=D1=85=D0=BE=D0=B4=D0=B8=
=D0=BC=D0=BE =D1=87=D1=82=D0=BE-=D1=82=D0=BE
> > =D0=B4=D0=BE=D0=B1=D0=B0=D0=B2=D0=BB=D1=8F=D1=82=D1=8C =D0=BF=D0=B5=D1=
=80=D0=B5=D0=B4 sufficient.
>=20
> =D0=98=D0=BC=D0=B5=D0=BD=D0=BD=D0=BE =D1=8D=D1=82=D0=BE =D0=B8 =D1=81=D0=
=BB=D0=B5=D0=B4=D1=83=D0=B5=D1=82, =D0=B5=D1=81=D0=BB=D0=B8 =D0=B2=D0=B5=D1=
=80=D0=B8=D1=82=D1=8C =D0=BC=D0=B0=D0=BD=D1=83=D0=B0=D0=BB=D1=83:
>=20
> >>        If you use pam_ldap, pam_winbind, or any other authentication
> >> services that make use  of  PAM's
> >>        sufficient keyword, model your configuration on the following o=
rder:
>=20
> =D0=9F=D0=B5=D1=80=D0=B5=D0=B2=D0=BE=D0=B4:
> =D0=95=D1=81=D0=BB=D0=B8 =D0=B2=D1=8B =D0=B8=D1=81=D0=BF=D0=BE=D0=BB=D1=
=8C=D0=B7=D1=83=D0=B5=D1=82=D0=B5 pam_ldap, pam_winbind =D0=B8=D0=BB=D0=B8 =
=D0=BB=D1=8E=D0=B1=D0=BE=D0=B9 =D0=B4=D1=80=D1=83=D0=B3=D0=BE=D0=B9 =D1=81=
=D0=B5=D1=80=D0=B2=D0=B8=D1=81
> =D0=B0=D1=83=D1=82=D0=B5=D0=BD=D1=82=D0=B8=D1=84=D0=B8=D0=BA=D0=B0=D1=86=
=D0=B8=D0=B8, =D0=BA=D0=BE=D1=82=D0=BE=D1=80=D1=8B=D0=B9 =D0=B8=D1=81=D0=BF=
=D0=BE=D0=BB=D1=8C=D0=B7=D1=83=D0=B5=D1=82 =D0=BE=D0=BF=D1=86=D0=B8=D1=8E s=
ufficient, =D0=B2=D0=B0=D1=88 =D0=BA=D0=BE=D0=BD=D1=84=D0=B8=D0=B3 =D0=B1=
=D1=83=D0=B4=D0=B5=D1=82
> =D0=B2=D1=8B=D0=B3=D0=BB=D1=8F=D0=B4=D0=B5=D1=82=D1=8C =D1=81=D0=BB=D0=B5=
=D0=B4=D1=83=D1=8E=D1=89=D0=B8=D0=BC =D0=BE=D0=B1=D1=80=D0=B0=D0=B7=D0=BE=
=D0=BC:
>=20
> >>               =E3=83=BB=E3=83=BB=E3=83=BB
> >>               auth    required    pam_mount.so <-- =D0=9F=D0=BE=D1=81=
=D1=82=D0=B0=D0=B2=D0=B8=D0=BB=D0=B8 =D0=B2 =D1=81=D0=B0=D0=BC=D0=BE=D0=BC =
=D0=BD=D0=B0=D1=87=D0=B0=D0=BB=D0=B5!!! =D0=94=D0=BE sufficient.
> >>               auth    sufficient  pam_ldap.so use_first_pass
> >>               auth    required    pam_unix.so use_first_pass
> >>               =E3=83=BB=E3=83=BB=E3=83=BB
>=20
> =D0=A2.=D0=B5., =D0=BF=D0=BE=D0=BB=D1=83=D1=87=D0=B0=D0=B5=D1=82=D1=81=D1=
=8F, =D1=87=D1=82=D0=BE pam_mount.so =D1=81=D1=82=D0=BE=D0=B8=D1=82 =D0=BF=
=D0=B5=D1=80=D0=B2=D1=8B=D0=BC, sufficient
> pam_ldap.so - =D0=B2=D1=82=D0=BE=D1=80=D1=8B=D0=BC =D0=B8 =D1=83=D0=B6=D0=
=B5 =D0=BF=D0=BE=D1=81=D0=BB=D0=B5 =D0=BD=D0=B8=D1=85 pam_unix.so (=D0=B0 =
=D0=B2 =D0=BD=D0=B0=D1=88=D0=B5=D0=BC =D1=81=D0=BB=D1=83=D1=87=D0=B0=D0=B5
> =D0=B1=D1=83=D0=B4=D0=B5=D1=82 pam_tcb).

=D0=9A=D0=B0=D0=BA=D0=BE=D0=B9 =D1=81=D0=BC=D1=8B=D1=81=D0=BB =D0=B2=D1=8B=
=D0=BF=D0=BE=D0=BB=D0=BD=D1=8F=D1=82=D1=8C pam_mount.so =D0=B4=D0=BE =D0=B0=
=D1=83=D1=82=D0=B5=D0=BD=D1=82=D0=B8=D1=84=D0=B8=D0=BA=D0=B0=D1=86=D0=B8=D0=
=B8 (pam_tcb.so/pam_ldap.so)?
=D0=97=D0=B0=D1=87=D0=B5=D0=BC =D0=B2=D0=BE=D0=BE=D0=B1=D1=89=D0=B5 pam_mou=
nt.so =D0=BF=D0=BE=D0=BC=D0=B5=D1=89=D0=B0=D1=82=D1=8C =D0=B2 =D1=81=D1=82=
=D0=B5=D0=BA =D0=B0=D1=83=D1=82=D0=B5=D0=BD=D1=82=D0=B8=D1=84=D0=B8=D0=BA=
=D0=B0=D1=86=D0=B8=D0=B8?

> >> >> auth     [success=3D2 default=3Dignore]       pam_tcb.so shadow for=
k prefix=3D$2a$ count=3D8 nullok
> >> >> auth     requisite pam_succeed_if.so uid >=3D 500 quiet
> >> >> auth     [success=3D1 default=3Dignore]       pam_ldap.so use_first=
_pass
> >> >> auth     optional       pam_mount.so
> >> >
> >> > =D0=92=D1=8B =D0=BD=D0=B5=D0=BF=D1=80=D0=B0=D0=B2=D0=B8=D0=BB=D1=8C=
=D0=BD=D0=BE =D1=81=D0=BF=D0=B8=D1=81=D0=B0=D0=BB=D0=B8 =D1=81 pam_mount(8)=
.  =D0=A7=D1=82=D0=BE=D0=B1=D1=8B =D0=BF=D0=BE=D0=BD=D1=8F=D1=82=D1=8C, =D0=
=B2 =D1=87=D1=91=D0=BC =D0=BE=D1=88=D0=B8=D0=B1=D0=BA=D0=B0,
> >> > =D0=BF=D1=80=D0=B8=D0=B4=D1=91=D1=82=D1=81=D1=8F =D0=BF=D1=80=D0=BE=
=D1=87=D0=B8=D1=82=D0=B0=D1=82=D1=8C =D0=B8 =D0=BF=D0=BE=D0=BD=D1=8F=D1=82=
=D1=8C pam.conf(5).
> >>
> >> =D0=9E=D1=88=D0=B8=D0=B1=D0=BA=D0=B8 =D0=BD=D0=B5=D1=82. =D0=AD=D1=82=
=D0=BE=D1=82 =D0=B2=D0=B0=D1=80=D0=B8=D0=B0=D0=BD=D1=82 =D1=80=D0=B0=D0=B1=
=D0=BE=D1=82=D0=B0=D0=B5=D1=82. =D0=9C=D0=BE=D0=B9 =D0=B2=D0=BE=D0=BF=D1=80=
=D0=BE=D1=81 =D0=BA=D0=B0=D1=81=D0=B0=D0=B5=D1=82=D1=81=D1=8F =D1=81=D0=BA=
=D0=BE=D1=80=D0=B5=D0=B5
> >> =D1=8D=D1=81=D1=82=D0=B5=D1=82=D0=B8=D0=BA=D0=B8, =D1=87=D0=B5=D0=BC =
=D1=84=D1=83=D0=BD=D0=BA=D1=86=D0=B8=D0=BE=D0=BD=D0=B0=D0=BB=D1=8C=D0=BD=D0=
=BE=D1=81=D1=82=D0=B8...
> >
> > =D0=92 =D1=8D=D1=82=D0=BE=D0=BC =D0=B2=D0=B0=D1=80=D0=B8=D0=B0=D0=BD=D1=
=82=D0=B5 =D0=B5=D1=81=D1=82=D1=8C =D1=81=D0=B5=D0=BC=D0=B0=D0=BD=D1=82=D0=
=B8=D1=87=D0=B5=D1=81=D0=BA=D0=B0=D1=8F =D0=BE=D1=88=D0=B8=D0=B1=D0=BA=D0=
=B0.  =D0=9F=D0=BE=D0=BF=D1=80=D0=BE=D0=B1=D1=83=D0=B9=D1=82=D0=B5
> > - =D0=B7=D0=B0=D0=BB=D0=BE=D0=B3=D0=B8=D0=BD=D0=B8=D1=82=D1=8C=D1=81=D1=
=8F ldap-=D0=BF=D0=BE=D0=BB=D1=8C=D0=B7=D0=BE=D0=B2=D0=B0=D1=82=D0=B5=D0=BB=
=D0=B5=D0=BC;
> > - =D0=B7=D0=B0=D0=BB=D0=BE=D0=B3=D0=B8=D0=BD=D0=B8=D1=82=D1=8C=D1=81=D1=
=8F =D0=BD=D0=B5=D1=81=D1=83=D1=89=D0=B5=D1=81=D1=82=D0=B2=D1=83=D1=8E=D1=
=89=D0=B8=D0=BC =D0=BF=D0=BE=D0=BB=D1=8C=D0=B7=D0=BE=D0=B2=D0=B0=D1=82=D0=
=B5=D0=BB=D0=B5=D0=BC.
>=20
> =D0=9F=D0=BE=D0=BF=D1=80=D0=BE=D0=B1=D0=BE=D0=B2=D0=B0=D0=BB. =D0=9D=D0=
=B8=D0=BA=D0=B0=D0=BA=D0=B8=D1=85 =D1=81=D1=8E=D1=80=D0=BF=D1=80=D0=B8=D0=
=B7=D0=BE=D0=B2. =D0=92=D1=81=D0=B5 =D1=80=D0=B0=D0=B1=D0=BE=D1=82=D0=B0=D0=
=B5=D1=82. =D0=9C=D0=BE=D0=B6=D0=B5=D1=82 =D0=BA=D0=BE=D0=BD=D0=BA=D1=80=D0=
=B5=D1=82=D0=BD=D0=BE =D0=BF=D0=BE=D1=8F=D1=81=D0=BD=D0=B8=D1=82=D1=8C,
> =D0=B2 =D0=BA=D0=B0=D0=BA=D0=BE=D0=BC =D0=BC=D0=B5=D1=81=D1=82=D0=B5 "=D1=
=81=D0=B5=D0=BC=D0=B0=D0=BD=D1=82=D0=B8=D1=87=D0=B5=D1=81=D0=BA=D0=B0=D1=8F=
 =D0=BE=D1=88=D0=B8=D0=B1=D0=BA=D0=B0"?

=D0=9D=D0=B0=D0=BF=D1=80=D0=B8=D0=BC=D0=B5=D1=80, =D0=B5=D1=81=D0=BB=D0=B8 =
pam_ldap.so =D0=B2 =D1=81=D1=82=D0=B5=D0=BA=D0=B5 auth =D0=B2=D0=B5=D1=80=
=D0=BD=D1=83=D0=BB success, =D1=82=D0=BE
=D0=BA=D0=B0=D0=BA=D0=BE=D0=B9 =D0=BC=D0=BE=D0=B4=D1=83=D0=BB=D1=8C =D0=B2 =
=D1=81=D1=82=D0=B5=D0=BA=D0=B5 auth =D0=B1=D1=83=D0=B4=D0=B5=D1=82 =D0=B2=
=D1=8B=D0=BF=D0=BE=D0=BB=D0=BD=D0=B5=D0=BD =D1=81=D0=BB=D0=B5=D0=B4=D1=83=
=D1=8E=D1=89=D0=B8=D0=BC?


--=20
ldv

--IrhDeMKUP4DT/M7F
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkpCCjAACgkQfKvmrJ41Nh4sHACfXP2HlBb2a28/4WPnFtUYalTg
lnQAn2l0DwOkalH9xF06/VKnitPHxJt9
=SuA/
-----END PGP SIGNATURE-----

--IrhDeMKUP4DT/M7F--