Bug#804322: should @include common-session-noninteractive instead

Hilmar Preuße hille42 at web.de
Mon Sep 19 12:03:19 UTC 2016


Am 07.11.2015 um 12:46 schrieb Marco d'Itri:

Hi Marco,

> Proftpd should use the common-session-noninteractive PAM configuration
> fragment, which does not call pam_systemd:
>
> /etc/pam.d/proftpd:
> - at include common-session-noninteractive
> + at include common-session
>
Currently:

hille at sid:~ $ less -X /etc/pam.d/proftpd
#%PAM-1.0
auth       required     pam_listfile.so item=user sense=deny 
file=/etc/ftpusers onerr=succeed
@include common-auth

# This is disabled because anonymous logins will fail otherwise,
# unless you give the 'ftp' user a valid shell, or /bin/false and add
# /bin/false to /etc/shells.
#auth       required    pam_shells.so

@include common-account
@include common-session
<snip>

If I understand correctly it is exactly as you requested.

Further on my system (I never touched pam) /etc/pam.d/common-session & 
/etc/pam.d/common-session-noninteractive differ just in the included 
comments. Just /usr/share/pam/common-session-noninteractive & 
/usr/share/pam/common-session differ.

Should we apply your patch (what exactly?) anyway?

Hilmar
-- 
http://www.hilmar-preusse.de.vu/   #206401 http://counter.li.org



More information about the Pkg-proftpd-maintainers mailing list