[packages/lightdm] pldize pam files

glen glen at pld-linux.org
Sun Mar 2 21:54:24 CET 2014 

commit a4e66fb63d653e505db80a7f1eb8c3577ca26eee
Author: Elan Ruusamäe <glen at delfi.ee>
Date:   Sun Mar 2 20:54:09 2014 +0000

    pldize pam files

 lightdm-autologin.pamd | 24 ++++++++++--------------
 lightdm-greeter.pamd   | 22 ++++++++++++----------
 lightdm.pamd           |  3 +++
 3 files changed, 25 insertions(+), 24 deletions(-)
---
diff --git a/lightdm-autologin.pamd b/lightdm-autologin.pamd
index ba7a68c..73dcfe3 100644
--- a/lightdm-autologin.pamd
+++ b/lightdm-autologin.pamd
@@ -1,20 +1,16 @@
 #%PAM-1.0
-
-# Block login if they are globally disabled
-auth      required pam_nologin.so
-
-# Load environment from /etc/environment and ~/.pam_environment
-auth      required pam_env.so
-
+auth		required	pam_listfile.so item=user sense=deny file=/etc/security/blacklist.lightdm onerr=succeed
 # Allow access without authentication
-auth      required pam_permit.so
+auth		required	pam_permit.so
 
-# Stop autologin if account requires action
-account   required pam_unix.so
+account		required	pam_shells.so
+account		required	pam_nologin.so
+account		required 	pam_access.so
+account		include		system-auth
 
 # Can't change password
-password  required pam_deny.so
+password	required	pam_deny.so
 
-# Setup session
-session   required pam_unix.so
-session   optional pam_systemd.so
+session		optional	pam_keyinit.so force revoke
+session		include		system-auth
+session		optional	pam_console.so
diff --git a/lightdm-greeter.pamd b/lightdm-greeter.pamd
index 9a6862b..8a7f1d1 100644
--- a/lightdm-greeter.pamd
+++ b/lightdm-greeter.pamd
@@ -1,17 +1,19 @@
 #%PAM-1.0
-
-# Load environment from /etc/environment and ~/.pam_environment
-auth      required pam_env.so
-
+auth		required	pam_listfile.so item=user sense=deny file=/etc/security/blacklist.lightdm onerr=succeed
 # Always let the greeter start without authentication
-auth      required pam_permit.so
+auth		required	pam_permit.so
+auth		include		system-auth
 
+account		required	pam_shells.so
+account		required	pam_nologin.so
+account		required 	pam_access.so
 # No action required for account management
-account   required pam_permit.so
+account		required	pam_permit.so
+account		include		system-auth
 
 # Can't change password
-password  required pam_deny.so
+password	required	pam_deny.so
 
-# Setup session
-session   required pam_unix.so
-session   optional pam_systemd.so
+session		optional	pam_keyinit.so force revoke
+session		include		system-auth
+session		optional	pam_console.so
diff --git a/lightdm.pamd b/lightdm.pamd
index f71de1a..812f1fc 100644
--- a/lightdm.pamd
+++ b/lightdm.pamd
@@ -1,11 +1,14 @@
 #%PAM-1.0
 auth		required	pam_listfile.so item=user sense=deny file=/etc/security/blacklist.lightdm onerr=succeed
 auth		include		system-auth
+
 account		required	pam_shells.so
 account		required	pam_nologin.so
 account		required 	pam_access.so
 account		include		system-auth
+
 password	include		system-auth
+
 session		optional	pam_keyinit.so force revoke
 session		include		system-auth
 session		optional	pam_console.so
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/lightdm.git/commitdiff/a4e66fb63d653e505db80a7f1eb8c3577ca26eee

More information about the pld-cvs-commit mailing list