blob: 568e91157108dbf89bb0dd7838fca638e177c685 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
|
.TH pam_rps 8 2010/4/29 "Red Hat Linux" "System Administrator's Manual"
.SH NAME
pam_rps \- challenge-response authentication
.SH SYNOPSIS
.B auth required pam_rps.so
.SH DESCRIPTION
pam_rps.so is designed to provide an easy-to-test challenge-response
authentication mechanism for PAM-enabled applications.
Without pam_rps, successful authentication can only occur for a user if the
user has previously established some sort of means of authenticating to the
local system or a trusted server. Using pam_rps removes this limitation.
.SH ARGUMENTS
.IP debug
Enable module debugging. The module will log its progress to syslog with
"debug" priority.
.IP throw=\fInumber\fP
The user will be issued the \fInumber\fPth challenge in the module's list
of challenges that it can throw.
.IP best_of=\fInumber\fP
The user will be issued multiple challenges, and must "win" against more than
one half of them. If the supplied number is not odd, it will be incremented.
.IP echo
Signal to the calling application that the user should be able to see
the response as it is being typed in.
.IP verbose
Let the user know the results of the match(es).
.IP sun
Follow the conversation conventions consistent with Solaris PAM and not
Linux-PAM. The default is to attempt to accomodate both.
.IP linux
Follow the conversation conventions consistent with Linux-PAM and not
Solaris PAM. The default is to attempt to accomodate both.
.IP lizard
.IP spock
Use the expanded rules as defined by Sam Kass and Karen Bryla (http://www.samkass.com/theories/RPSSL.html).
.SH NOTES
Do not use this module in production.
.SH BUGS
Let's hope not, but if you find any, please report them via the "Bug Track"
link at http://bugzilla.redhat.com/bugzilla/
.SH AUTHOR
Nalin Dahyabhai <nalin@redhat.com>
|
