[arch-general] PAM CAllback
Andy Pieters
arch-general at andypieters.me.uk
Wed May 13 14:01:22 UTC 2020
On Wed, 13 May 2020 at 14:53, Matt Pallissard <matt at pallissard.net> wrote:
>
> On 2020-05-13T12:39:50 +0100, Andy Pieters wrote:
>
> Should be doable, skip to pam_exec.so with `success=${num lines to skip}`
>
>
So
> man 8 pam_exec
>
> auth sufficient pam_unix.so
> auth [success=1 default=ignore] foo_2fa.so some_other=options
> auth requisite pam_deny.so
> auth optional pam_exec.so debug /path/to/my/script.sh
>
Does that mean then that the auth_optional line is only *ever* triggered by
a success on the 2fa line? No other way for PAM to execute it?
More information about the arch-general
mailing list