Oh I know it's solvable. A buddy of mine had a PAM module where you only had to "not lose" a game of tic tac toe to be authenticated.... So sure, there are lots of options there.
My point was that I think I really like the way fossil doesn't really do auth, yet still controls who's in what groups or at least appears to control all of this through fscons. On 7/28/06, erik quanstrom <[EMAIL PROTECTED]> wrote:
the /etc/(passwd|shadow) problem is solvable. linux pam/shadow login supports ldap already, the linux kernel supports 9p already and /bin/(login|su) could consult an authentication server on the loopback device, if one were so inclined. it's not like this would be a radical departure from authentication methods pam already supports --- like ldap. - erik
