Página inicial Explorar Ajuda
Entrar
SoftwareDesign
/
csu3_am335x
8
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
csu3_am335x
/
EVSE
/
GPL
/
linux-pam-1.5.2
/
modules
/
pam_env
/
pam_env.8.xml

pam_env.8.xml 8.3 KB
Link permanente Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271 
  1. <?xml version="1.0" encoding="ISO-8859-1"?>
    2. 

  2. <!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.1.2//EN"
    3. 

  3.                    "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd">
    4. 

  4. 

  5. <refentry id='pam_env'>
    6. 

  6. 

  7.   <refmeta>
    8. 

  8.     <refentrytitle>pam_env</refentrytitle>
    9. 

  9.     <manvolnum>8</manvolnum>
    10. 

  10.     <refmiscinfo class='setdesc'>Linux-PAM Manual</refmiscinfo>
    11. 

  11.   </refmeta>
    12. 

  12. 

  13.   <refnamediv id='pam_env-name'>
    14. 

  14.     <refname>pam_env</refname>
    15. 

  15.     <refpurpose>
    16. 

  16.       PAM module to set/unset environment variables
    17. 

  17.     </refpurpose>
    18. 

  18.   </refnamediv>
    19. 

  19. 

  20. <!-- body begins here -->
    21. 

  21. 

  22.   <refsynopsisdiv>
    23. 

  23.     <cmdsynopsis id="pam_env-cmdsynopsis">
    24. 

  24.       <command>pam_env.so</command>
    25. 

  25.       <arg choice="opt">
    26. 

  26.         debug
    27. 

  27.       </arg>
    28. 

  28.       <arg choice="opt">
    29. 

  29.         conffile=<replaceable>conf-file</replaceable>
    30. 

  30.       </arg>
    31. 

  31.       <arg choice="opt">
    32. 

  32.         envfile=<replaceable>env-file</replaceable>
    33. 

  33.       </arg>
    34. 

  34.       <arg choice="opt">
    35. 

  35.         readenv=<replaceable>0|1</replaceable>
    36. 

  36.       </arg>
    37. 

  37.       <arg choice="opt">
    38. 

  38.         user_envfile=<replaceable>env-file</replaceable>
    39. 

  39.       </arg>
    40. 

  40.       <arg choice="opt">
    41. 

  41.         user_readenv=<replaceable>0|1</replaceable>
    42. 

  42.       </arg>
    43. 

  43.     </cmdsynopsis>
    44. 

  44.   </refsynopsisdiv>
    45. 

  45. 

  46. 

  47.   <refsect1 id="pam_env-description">
    48. 

  48.     <title>DESCRIPTION</title>
    49. 

  49.     <para>
    50. 

  50.       The pam_env PAM module allows the (un)setting of environment
    51. 

  51.       variables. Supported is the use of previously set environment
    52. 

  52.       variables as well as <emphasis>PAM_ITEM</emphasis>s such as
    53. 

  53.       <emphasis>PAM_RHOST</emphasis>.
    54. 

  54.     </para>
    55. 

  55.     <para>
    56. 

  56.       By default rules for (un)setting of variables are taken from the
    57. 

  57.       config file <filename>/etc/security/pam_env.conf</filename>. An
    58. 

  58.       alternate file can be specified with the <emphasis>conffile</emphasis>
    59. 

  59.       option.
    60. 

  60.     </para>
    61. 

  61.     <para>
    62. 

  62.       Second a file (<filename>/etc/environment</filename> by default) with simple
    63. 

  63.       <emphasis>KEY=VAL</emphasis> pairs on separate lines will be read.
    64. 

  64.       With the <emphasis>envfile</emphasis> option an alternate file can be specified.
    65. 

  65.       And with the <emphasis>readenv</emphasis> option this can be completely disabled.
    66. 

  66.     </para>
    67. 

  67.     <para>
    68. 

  68.       Third it will read a user configuration file
    69. 

  69.       (<filename>$HOME/.pam_environment</filename> by default).
    70. 

  70.       The default file can be changed with the
    71. 

  71.       <emphasis>user_envfile</emphasis> option
    72. 

  72.       and it can be turned on and off with the <emphasis>user_readenv</emphasis> option.
    73. 

  73.     </para>
    74. 

  74.     <para>
    75. 

  75.       Since setting of PAM environment variables can have side effects
    76. 

  76.       to other modules, this module should be the last one on the stack.
    77. 

  77.     </para>
    78. 

  78.   </refsect1>
    79. 

  79. 

  80.   <refsect1 id="pam_env-options">
    81. 

  81.     <title>OPTIONS</title>
    82. 

  82.     <variablelist>
    83. 

  83. 

  84.       <varlistentry>
    85. 

  85.         <term>
    86. 

  86.           <option>conffile=<replaceable>/path/to/pam_env.conf</replaceable></option>
    87. 

  87.         </term>
    88. 

  88.         <listitem>
    89. 

  89.           <para>
    90. 

  90.             Indicate an alternative <filename>pam_env.conf</filename>
    91. 

  91.             style configuration file to override the default. This can
    92. 

  92.             be useful when different services need different environments.
    93. 

  93.           </para>
    94. 

  94.         </listitem>
    95. 

  95.       </varlistentry>
    96. 

  96. 

  97.       <varlistentry>
    98. 

  98.         <term>
    99. 

  99.           <option>debug</option>
    100. 

  100.         </term>
    101. 

  101.         <listitem>
    102. 

  102.           <para>
    103. 

  103.             A lot of debug information is printed with
    104. 

  104.             <citerefentry><refentrytitle>syslog</refentrytitle><manvolnum>3</manvolnum></citerefentry>.
    105. 

  105.           </para>
    106. 

  106.         </listitem>
    107. 

  107.       </varlistentry>
    108. 

  108. 

  109.       <varlistentry>
    110. 

  110.         <term>
    111. 

  111.           <option>envfile=<replaceable>/path/to/environment</replaceable></option>
    112. 

  112.         </term>
    113. 

  113.         <listitem>
    114. 

  114.           <para>
    115. 

  115.             Indicate an alternative <filename>environment</filename>
    116. 

  116.             file to override the default. The syntax are simple
    117. 

  117. 	    <emphasis>KEY=VAL</emphasis> pairs on separate lines. The
    118. 

  118. 	    <emphasis>export</emphasis> instruction can be specified for bash
    119. 

  119. 	    compatibility, but will be ignored.
    120. 

  120. 	    This can be useful when different  services need different environments.
    121. 

  121.           </para>
    122. 

  122.         </listitem>
    123. 

  123.       </varlistentry>
    124. 

  124. 

  125.       <varlistentry>
    126. 

  126.         <term>
    127. 

  127.           <option>readenv=<replaceable>0|1</replaceable></option>
    128. 

  128.         </term>
    129. 

  129.         <listitem>
    130. 

  130.           <para>
    131. 

  131.             Turns on or off the reading of the file specified by envfile
    132. 

  132.             (0 is off, 1 is on). By default this option is on.
    133. 

  133.           </para>
    134. 

  134.         </listitem>
    135. 

  135.       </varlistentry>
    136. 

  136. 

  137. 

  138.       <varlistentry>
    139. 

  139.         <term>
    140. 

  140.           <option>user_envfile=<replaceable>filename</replaceable></option>
    141. 

  141.         </term>
    142. 

  142.         <listitem>
    143. 

  143.           <para>
    144. 

  144.             Indicate an alternative <filename>.pam_environment</filename>
    145. 

  145.             file to override the default.The syntax is the same as
    146. 

  146. 	    for <emphasis>/etc/security/pam_env.conf</emphasis>.
    147. 

  147. 	    The filename is relative to the user home directory.
    148. 

  148. 	    This can be useful when different services need different
    149. 

  149. 	    environments.
    150. 

  150.           </para>
    151. 

  151.         </listitem>
    152. 

  152.       </varlistentry>
    153. 

  153. 

  154.       <varlistentry>
    155. 

  155.         <term>
    156. 

  156.           <option>user_readenv=<replaceable>0|1</replaceable></option>
    157. 

  157.         </term>
    158. 

  158.         <listitem>
    159. 

  159.           <para>
    160. 

  160.             Turns on or off the reading of the user specific environment
    161. 

  161.             file. 0 is off, 1 is on. By default this option is off as user
    162. 

  162.             supplied environment variables in the PAM environment could affect
    163. 

  163.             behavior of subsequent modules in the stack without the consent
    164. 

  164.             of the system administrator.
    165. 

  165.           </para>
    166. 

  166.           <para>
    167. 

  167.             Due to problematic security this functionality is deprecated
    168. 

  168.             since the 1.5.0 version and will be removed completely at some
    169. 

  169.             point in the future.
    170. 

  170.           </para>
    171. 

  171.         </listitem>
    172. 

  172.       </varlistentry>
    173. 

  173. 

  174.     </variablelist>
    175. 

  175.   </refsect1>
    176. 

  176. 

  177.   <refsect1 id="pam_env-types">
    178. 

  178.     <title>MODULE TYPES PROVIDED</title>
    179. 

  179.     <para>
    180. 

  180.       The <option>auth</option> and <option>session</option> module
    181. 

  181.       types are provided.
    182. 

  182.     </para>
    183. 

  183.   </refsect1>
    184. 

  184. 

  185.   <refsect1 id="pam_env-return_values">
    186. 

  186.     <title>RETURN VALUES</title>
    187. 

  187.     <variablelist>
    188. 

  188.       <varlistentry>
    189. 

  189.         <term>PAM_ABORT</term>
    190. 

  190.         <listitem>
    191. 

  191.            <para>
    192. 

  192.              Not all relevant data or options could be gotten.
    193. 

  193.           </para>
    194. 

  194.         </listitem>
    195. 

  195.       </varlistentry>
    196. 

  196.       <varlistentry>
    197. 

  197.         <term>PAM_BUF_ERR</term>
    198. 

  198.         <listitem>
    199. 

  199.            <para>
    200. 

  200.               Memory buffer error.
    201. 

  201.           </para>
    202. 

  202.         </listitem>
    203. 

  203.       </varlistentry>
    204. 

  204.       <varlistentry>
    205. 

  205.         <term>PAM_IGNORE</term>
    206. 

  206.         <listitem>
    207. 

  207.            <para>
    208. 

  208.              No pam_env.conf and environment file was found.
    209. 

  209.           </para>
    210. 

  210.         </listitem>
    211. 

  211.       </varlistentry>
    212. 

  212.       <varlistentry>
    213. 

  213.         <term>PAM_SUCCESS</term>
    214. 

  214.         <listitem>
    215. 

  215.            <para>
    216. 

  216.              Environment variables were set.
    217. 

  217.           </para>
    218. 

  218.         </listitem>
    219. 

  219.       </varlistentry>
    220. 

  220.     </variablelist>
    221. 

  221.   </refsect1>
    222. 

  222. 

  223.   <refsect1 id="pam_env-files">
    224. 

  224.     <title>FILES</title>
    225. 

  225.     <variablelist>
    226. 

  226.       <varlistentry>
    227. 

  227.         <term><filename>/etc/security/pam_env.conf</filename></term>
    228. 

  228.         <listitem>
    229. 

  229.           <para>Default configuration file</para>
    230. 

  230.         </listitem>
    231. 

  231.       </varlistentry>
    232. 

  232.       <varlistentry>
    233. 

  233.         <term><filename>/etc/environment</filename></term>
    234. 

  234.         <listitem>
    235. 

  235.           <para>Default environment file</para>
    236. 

  236.         </listitem>
    237. 

  237.       </varlistentry>
    238. 

  238.       <varlistentry>
    239. 

  239.         <term><filename>$HOME/.pam_environment</filename></term>
    240. 

  240.         <listitem>
    241. 

  241.           <para>User specific environment file</para>
    242. 

  242.         </listitem>
    243. 

  243.       </varlistentry>
    244. 

  244.     </variablelist>
    245. 

  245.   </refsect1>
    246. 

  246. 

  247.   <refsect1 id="pam_env-see_also">
    248. 

  248.     <title>SEE ALSO</title>
    249. 

  249.     <para>
    250. 

  250.       <citerefentry>
    251. 

  251.         <refentrytitle>pam_env.conf</refentrytitle><manvolnum>5</manvolnum>
    252. 

  252.       </citerefentry>,
    253. 

  253.       <citerefentry>
    254. 

  254.         <refentrytitle>pam.d</refentrytitle><manvolnum>5</manvolnum>
    255. 

  255.       </citerefentry>,
    256. 

  256.       <citerefentry>
    257. 

  257.         <refentrytitle>pam</refentrytitle><manvolnum>8</manvolnum>
    258. 

  258.       </citerefentry>,
    259. 

  259.       <citerefentry>
    260. 

  260.         <refentrytitle>environ</refentrytitle><manvolnum>7</manvolnum>
    261. 

  261.       </citerefentry>.
    262. 

  262.     </para>
    263. 

  263.   </refsect1>
    264. 

  264. 

  265.   <refsect1 id="pam_env-authors">
    266. 

  266.     <title>AUTHOR</title>
    267. 

  267.     <para>
    268. 

  268.       pam_env was written by Dave Kinchlea &lt;kinch@kinch.ark.com&gt;.
    269. 

  269.     </para>
    270. 

  270.   </refsect1>
    271. 

  271. </refentry>
    272.