4 This file was written by Andrew G. Morgan <morgan@linux.kernel.org>
7 <sect1>Anonymous access module
14 <tag><bf>Module Name:</bf></tag>
17 <tag><bf>Author:</bf></tag>
18 Andrew G. Morgan <morgan@linux.kernel.org>
20 <tag><bf>Maintainer:</bf></tag>
23 <tag><bf>Management groups provided:</bf></tag>
26 <tag><bf>Cryptographically sensitive:</bf></tag>
28 <tag><bf>Security rating:</bf></tag>
30 <tag><bf>Clean code base:</bf></tag>
32 <tag><bf>System dependencies:</bf></tag>
34 <tag><bf>Network aware:</bf></tag>
35 prompts for email address of user; easily spoofed (XXX - needs work)
39 <sect2>Overview of module
42 The purpose of this module is to provide a pluggable anonymous ftp
45 <sect2>Authentication component
50 <tag><bf>Recognized arguments:</bf></tag>
52 <tt/users=XXX,YYY,.../;
55 <tag><bf>Description:</bf></tag>
57 This module intercepts the user's name and password. If the name is
58 ``<tt/ftp/'' or ``<tt/anonymous/'', the user's password is broken up
59 at the `<tt/@/' delimiter into a <tt/PAM_RUSER/ and a <tt/PAM_RHOST/
60 part; these pam-items being set accordingly. The username is set to
61 ``<tt/ftp/''. In this case the module succeeds. Alternatively, the
62 module sets the <tt/PAM_AUTHTOK/ item with the entered password and
66 The behavior of the module can be modified with the following flags:
69 log more information to with <tt/syslog(3)/.
71 <item><tt/users=XXX,YYY,.../ -
72 instead of ``<tt/ftp/'' or ``<tt/anonymous/'', provide anonymous login
73 to the comma separated list of users; ``<tt/XXX,YYY,.../''. Should the
74 applicant enter one of these usernames the returned username is set to
75 the first in the list; ``<tt/XXX/''.
78 pay no attention to the email address of the user (if supplied).
82 <tag><bf>Examples/suggested usage:</bf></tag>
84 An example of the use of this module is provided in the configuration
85 file section <ref id="configuration" name="above">. With care, this
86 module could be used to provide new/temporary account anonymous
92 End of sgml insert for this module.