NewsForge: Hardening Linux Authentication and User Identity

"PAM is an authentication mechanism that originated on Solaris, but is used on various systems, including Linux. The Linux PAM implementation allows a system administrator to choose how users authenticate to various services. New modules can be added by an administrator at any time, offering overall flexibility in how authentication happens.

"Traditionally, Linux and other Unix-like systems simply authenticated users against an entry in the file /etc/passwd. Everyone had read-only access to the password file, and the encrypted passwords were available to anyone with access to the system..."

Complete Story

Related Stories:

• LinuxExposed: Networking Security Concepts(Aug 04, 2004)
• Linux.com: SysAdmin to SysAdmin: Educate Users About Strong Passwords(Jul 22, 2004)
• developerWorks: mod_auth_ibmdb2: A Novel Authentication Method for Apache(Jul 19, 2004)