From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on sa.int.altlinux.org X-Spam-Level: X-Spam-Status: No, score=-1.5 required=5.0 tests=BAYES_00, DNS_FROM_OPENWHOIS, SPF_PASS autolearn=no version=3.2.5 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.ru; s=mail; t=1282557972; bh=ASw27Dzsy7OuJH4aXWDxPWcYd/+RLG6D/u7Tk7ZVsJc=; h=Message-ID:Date:From:Reply-To:MIME-Version:To:Subject:References: In-Reply-To:Content-Type:Content-Transfer-Encoding; b=EK7U0/L962SXbASSURGIpBLdvixo5YTwxAMkU+PHXRiX13h6LtwCoREBIL8QVY9nQ 1RqFpa5/dm0Qrmt9M0FaOrZp36lISOoUtQIpnt4colS3sUqtxn7pHOzMh3/nroX16G 56BqCktMdRtHAmF0VdmCyTasoKYGiW65JuTqMiak= Message-ID: <4C724871.9040606@yandex.ru> Date: Mon, 23 Aug 2010 17:07:45 +0700 From: "Mad-Max-Traveller@yandex.ru" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; ru; rv:1.9.2.8) Gecko/20100802 Lightning/1.0b2 Thunderbird/3.1.2 MIME-Version: 1.0 To: community@lists.altlinux.org References: <4C6CD705.8090800@yandex.ru> In-Reply-To: <4C6CD705.8090800@yandex.ru> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Yandex-TimeMark: 1282557972 X-Yandex-Spam: 1 X-Yandex-Front: smtp2.mail.yandex.net Subject: Re: [Comm] =?utf-8?b?0JLQstC+0LQg0LIg0LTQvtC80LXQvSDQvdCwINCx0LDQt9C1?= =?utf-8?b?IFdpbiAyMDAzINGA0LDQsdC+0YfQtdC5INGB0YLQsNC90YbQuNC4INC/0L4=?= =?utf-8?b?0LQg0YPQv9GA0LDQstC70LXQvdC40LXQvCBTaW1wbHkgTGludXg=?= X-BeenThere: community@lists.altlinux.org X-Mailman-Version: 2.1.12 Precedence: list Reply-To: Mad-Max-Traveller@yandex.ru, ALT Linux Community general discussions List-Id: ALT Linux Community general discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Aug 2010 10:06:19 -0000 Archived-At: List-Archive: List-Post: 19.08.2010 14:02, Mad-Max-Traveller@yandex.ru пишет: > > Но не знаю как правильно настроить PAM. Плохо понимаю структуру > этого файла, > а толковую документацию на русском не нашел. > В /etc/pam.d есть симлинк system-auth на system-auth-local. Если > пересоздать симлинк system-auth на system-auth-winbind то в систему > невозможно залогинится, ни доменными пользователями, ни локальными. > > Содержимое /etc/pam.d/system-auth-winbind > #%PAM-1.0 > auth required pam_tcb.so shadow fork prefix=$2a$ count=8 > nullok > auth optional pam_mount.so > auth sufficient pam_winbind.so use_first_pass > > account required pam_tcb.so shadow fork > account sufficient pam_succeed_if.so uid< 500 quiet > account [default=bad success=ok user_unknown=ignore] > pam_winbind.so > > password required pam_passwdqc.so config=/etc/passwdqc.conf > password required pam_tcb.so use_authtok shadow fork > prefix=$2a$ count=8 nullok write_to=tcb > > session required pam_tcb.so > session required pam_mktemp.so > session required pam_limits.so > session optional pam_mount.so > # We use pam_mkhomedir to create home dirs for incoming domain users > # Note used umask, it will result in rwxr-x--x access rights > session required pam_mkhomedir.so skel=/etc/skel/ umask=0026 > session include system-auth > > Прошу вашей помощи в настройке. Заранее спасибо. > Неужели ни кто не знает?