> > Should we just integrate such a module? It could be very useful for
> > PAM application developers as well as for ON developers.
>
> In a related vein, a while ago, I wrote a simple application that'd
> allow one to exercise the pam stack of an arbitrary service (it did
> authentication, authentication, open session, close session, as well
> as the data prompting iirc). It'd be fairly trivial to write again (I
> have long since lost the original source). I found it useful for
> testing -- i could create a 'dummy' service w/ the config i wanted,
> test it using the program to make sure things worked right, before
> implementing the changes to a specific service (or other) with minimal
> risk of bricking the box. If people feel it might be useful to have,
> I'm open to writing it again.
There's at least a Sample PAM application in the developers
guide. And I think a sample service module. There's also
http://opensolaris.org/os/community/arc/policies/PAM/
and the sample application conversation function included there.
(Unfortunately the link to it turns up Not Found. I'll get
with the ARC site policy maintainer to have that fixed.)
Gary..
