1 This is the README for pam_unix in Linux-PAM-0.67.
2 --------------------------------------------------
4 pam_unix now comes as one module pam_unix.so.
6 The following links are left for compatibility with old versions:
7 pam_unix_auth: authentication module providing
8 pam_authenticate() and pam_setcred() hooks
9 pam_unix_sess: session module, providing session logging
10 pam_unix_acct: account management, providing shadow account
11 managment features, password aging etc..
12 pam_unix_passwd: password updating facilities providing
13 cracklib password strength checking facilities.
15 The following options are recognized:
16 debug - log more debugging info
17 audit - a little more extreme than debug
18 use_first_pass - don 't prompt the user for passwords
19 take them from PAM_ items instead
20 try_first_pass - don 't prompt the user for the passwords
21 unless PAM_(OLD)AUTHTOK is unset
22 use_authtok - like try_first_pass, but * fail * if the new
23 PAM_AUTHTOK has not been previously set.
24 (intended for stacking password modules only)
25 not_set_pass - don 't set the PAM_ items with the passwords
27 shadow - try to maintian a shadow based system.
28 md5 - when a user changes their password next,
29 encrypt it with the md5 algorithm.
30 bigcrypt - when a user changes their password next,
31 excrypt it with the DEC C2 - algorithm(0).
32 nodelay - used to prevent failed authentication
33 resulting in a delay of about 1 second.
34 nis - use NIS RPC for setting new password
35 remember=X - remember X old passwords, they are kept in
36 /etc/security/opasswd in MD5 crypted form
38 invalid arguments are logged to syslog.