Christian Schwarz wrote: > So how do people think about PAM? Should we use it? If so, it would be > nice if someone could provide me with a proposal for a policy change.
I think PAM is too complicated for the most security-crucial part of the system - logins. I'm sure there are pleny of security holes in there. It's also too easy to break. I've seem PAM break in lots of strange ways, and when it breaks, it can be pretty catastropic. I'm completly against PAM. -- see shy jo
