by according to a published document in setting the ftp chroot jail dir,
i replaced the following lines in my /etc/pam.d/ftp file:
auth required /lib/security/pam_shells.so
account required /lib/security/pam_stack.so service=system-auth
session required /lib/security/pam_stack.so service=system-auth
with these lines
auth required /lib/security/pam_pwdb.so shadow nullok
account required /lib/security/pam_pwdb.so
session required /lib/security/pam_pwdb.so
is there an *current* and *explicit* PAM document that can help me
verify that what i am doing is correct? i have individual users under
/var/ftp, setup like /var/ftp/username/ with ~/bin, ~/etc, ~/lib, and
a ~/dev/null for the shell.
Reference: my /etc/pam.d/ftp file:
#%PAM-1.0
auth required /lib/security/pam_listfile.so item=user
sense=deny\
file=/etc/ftpusers onerr=succeed
auth required /lib/security/pam_stack.so service=system-auth
# --------added 2002-01-28-------------------------------
auth required /lib/security/pam_pwdb.so shadow nullok
account required /lib/security/pam_pwdb.so
session required /lib/security/pam_pwdb.so
#--------------------------------------------------------
#auth required /lib/security/pam_shells.so
#account required /lib/security/pam_stack.so
service=system-auth
#session required /lib/security/pam_stack.so
service=system-auth