Re: [phplib] Authentication and *NIX From: nathan r. hruby (nhruby <email protected>)
Date: 05/21/01

On Mon, 21 May 2001, Paul Smith wrote:

> I'm wondering if folks could relate any experience they may have in
> combining the PHPLib authentication with the standard *NIX
> login/password validation process. Seems like a sane thing to do if
> you were putting, say, an intranet together, but I'm predicting I get
> bombarded with concerns about security (of course, this would be
> protected by SSL, and it's likely the whole thing will never see a
> non-192.168. network).
>

// Auth only interface to PAM
http://www.math.ohio-state.edu/~ccunning/pam_auth.html

// PAM API Wrapper
ftp://ftp.netexpress.net/pub/pam/

I would use LDAP or NIS myself, more flexible, bit more secure (Private
IP's don't mean a thig without an actual pysical air-gap), generally
allow everything to talk to each other a bit better, supported in mainline
php distro, will scale better and be easier to take outside of your
environment.

Of course you could talk to LDAP or YP/NIS with PAM, but why use a
middleman?

-n

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
nathan hruby / digital statement
nathan <email protected>
http://www.dstatement.com/

Public GPG key can be found at:
http://www.dstatement.com/nathan-gpg-key.txt
ED54 9A5E 132D BD01 9103 EEF3 E1B9 4738 EC90 801B
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

---------------------------------------------------------------------
To unsubscribe, e-mail: phplib-unsubscribe <email protected>
For additional commands, e-mail: phplib-help <email protected>