How are services mapped to the files in /etc/pam.d?

security linux authentication pam

The PAM "service" name ("sshd", "sudo", etc.) is compiled into the application. That is what decides which file will be initially loaded. After that, the @include lines are processed as described in freiheit's post.


It might be hardcoded into the programs, but each service has its own file in /etc/pam.d generally named after the actual process name. Local and serial consoles both work via getty which passes off actual logging in to "login", so you'd need to look at /etc/pam.d/login. SSH is actually "sshd", so it's in /etc/pam.d/sshd

On most modern distros, those files mostly contain lines like "@include common-password" or "auth include system-auth", so for those two you'd then need to look at /etc/pam.d/common-password or /etc/pam.d/system-auth. Slightly older distros (RHEL3, for instance), use something like "auth required pam_stack.so service=system-auth", which is a module based version of the same thing.

Related

managing vm backups - roll your own or buy the tools?
Recommendation for a free and small DNS server for Windows
3million users per month on a very active cart that needs SSL. What cost effective Load balancing options for SSL acceleration are there? [closed]
Can't restore SQL 2008 backup - error that the database is in use but it isn't
how to disable unencrypted traffic(port 80) on lighttpd
Getting debug output from a debian initramfs
What protocols/ports to open for WinSCP
"Threading" in Shell Scripts
Windows Licensing for Virtual Machine (VirtualPC) Usage [duplicate]
SQL Server Management Studio unable to connect to local instance
Why do files with multiple hard links lose 'Authenticated Users' read/write access (and how to make not happen)?
Clicking or Knocking with Seagate HD