libpam-modules patch pam_group for NSS groups
Edward Murrell
edward at murrell.co.nz
Mon Sep 8 03:41:17 UTC 2008
Hi, I've written a patch to allow the use of NSS groups in pam_group. Is
this a good place to submit it? The patch is for 8.04/hardy
0.99.7.1-5ubuntu6.1 package.
I wrote the patch so I can pull in groups on a ad-hoc basis for each
machine, while still leveraging the LDAP infrastructure.
For example, /etc/security/group.conf might have the following options for
a developers server to give developers more options;
ssh;*;%unixadmins; Al0000-2400; adm,fuse,sudoadmin
ssh;*;%developers; Al0000-2400; adm,tomcat,www-data
Or on a desktop box, automagically allow people in the desktop to use the
local devices (I think you can do this already with '*' for the third
field);
gdm;:0;%desktopusers; Al0000-2400; audio,plugdev,lpadmin,scanner,video
Cheers,
Edward Murrell
edward at murrell.co.nz
More information about the Ubuntu-devel-discuss
mailing list