Package: bamboo Version: 1.2-2 Severity: wishlist
attached is an example file "php" which can be used with bamboo and the pam authentication method. it is not exhaustive, but does demonstrate use of pam_tally to lock out a login after x failed attempts, and limiting who can log in (pam_listfile). the pam_unix module employs the standard "unix" passwd/shadow. it could be replaced by mysql (pam_mysql.so in package libpam-mysql), ldap (pam_ldap.so in libpam-ldap) etc. -- System Information: Debian Release: 3.1 Architecture: i386 (i686) Kernel: Linux 2.6.8-2-k7 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages bamboo depends on: ii apache [httpd] 1.3.33-6 versatile, high-performance HTTP s ii debconf 1.4.30.13 Debian configuration management sy pi php4 4:4.3.10-15 server-side, HTML-embedded scripti ii php4-sqlite 1.0.2-7 PHP4 bindings to SQLite, a file-ba ii sqlite 2.8.16-1 command line interface for SQLite -- no debconf information
# # /etc/pam.d/php - PAM behaviour for the php servicename # # we only do authentication [EMAIL PROTECTED] common-auth auth required pam_listfile.so onerr=fail item=user sense=allow file=/etc/bambooUsers auth required pam_tally.so onerr=fail no_magic_root auth required pam_unix.so nullok_secure account required pam_tally.so onerr=fail deny=3 reset no_magic_root per_user
