The userdb module Synopsis

Module Name: Author: Cristian Gafton <gafton@redhat.com> Maintainer: Author. Management groups provided: authentication Cryptographically sensitive: Security rating: Clean code base: System dependencies: Requires Berkeley DB. Network aware: Overview of module

Look up users in a .db database and verify their password against what is contained in that database. Authentication component

Recognized arguments: Description: This module is used to verify a username/password pair against values stored in a Berkeley DB database. The database is indexed by the username, and the data fields corresponding to the username keys are the passwords, in unencrypted form, so caution must be exercised over the access rights to the DB database itself.. The module will read the password from the user using the conversation mechanism. If you are using this module on top of another authetication module (like The action of the module may be modified from this default by one or more of the following flags in the /etc/pam.d/<service> file. /etc/foodata instead of /etc/foodata.db. Examples/suggested usage: This is a normal ftp configuration file (usually placed as /etc/pam.d/ftp on most systems) that will accept for login users whose username/password pairs are provided in the /tmp/dbtest.db file: #%PAM-1.0 auth required pam_listfile.so item=user sense=deny file=/etc/ftpusers onerr=succeed auth sufficient pam_userdb.so icase db=/tmp/dbtest auth required pam_pwdb.so shadow nullok try_first_pass auth required pam_shells.so account required pam_pwdb.so session required pam_pwdb.so