|
Lines 43-48
Link Here
|
| 43 |
.I /usr/lib/consolehelper/priv/auth |
43 |
.I /usr/lib/consolehelper/priv/auth |
| 44 |
privileged helper program to do the real work.) |
44 |
privileged helper program to do the real work.) |
| 45 |
|
45 |
|
|
|
46 |
.SH MAKING YOUR PROGRAM MANAGED |
| 47 |
|
| 46 |
.B consolehelper |
48 |
.B consolehelper |
| 47 |
requires that a PAM configuration for every managed program |
49 |
requires that a PAM configuration for every managed program |
| 48 |
exist. So to make /sbin/\fIfoo\fP or /usr/sbin/\fIfoo\fP managed, you |
50 |
exist. So to make /sbin/\fIfoo\fP or /usr/sbin/\fIfoo\fP managed, you |
|
Lines 51-56
Link Here
|
| 51 |
and create the file /etc/pam.d/\fIfoo\fP, normally using the |
53 |
and create the file /etc/pam.d/\fIfoo\fP, normally using the |
| 52 |
.IR pam_console (8) |
54 |
.IR pam_console (8) |
| 53 |
PAM module. |
55 |
PAM module. |
|
|
56 |
|
| 57 |
For obscure reasons, the file /etc/security/console.apps/\fIfoo\fP |
| 58 |
is also required to exist, with the following contents: |
| 59 |
|
| 60 |
USER=\fIroot\fP |
| 61 |
PROGRAM=/sbin/\fIfoo\fP |
| 62 |
SESSION=true |
| 63 |
|
| 64 |
USER is the user to run the program as (normally \fBroot\fP). |
| 65 |
PROGRAM is the full path to the program. SESSION is always \fItrue\fP; |
| 66 |
leave it that way. |
| 67 |
|
| 54 |
.SH OPTIONS |
68 |
.SH OPTIONS |
| 55 |
This program has no command line options of its own; it passes all |
69 |
This program has no command line options of its own; it passes all |
| 56 |
command line options on to the program it is calling. |
70 |
command line options on to the program it is calling. |
