summaryrefslogtreecommitdiffstats
path: root/core/modules/pam
diff options
context:
space:
mode:
authorSimon Rettberg2017-02-06 14:29:25 +0100
committerSimon Rettberg2017-02-06 14:29:25 +0100
commit076c4f7a27905b6e14ef5380514da33dfcdb550c (patch)
tree7cd35d28707c3281752aab44ed879dba30aa8014 /core/modules/pam
parent[run-virt] Fix domain name extraction from ldap config (diff)
downloadmltk-076c4f7a27905b6e14ef5380514da33dfcdb550c.tar.gz
mltk-076c4f7a27905b6e14ef5380514da33dfcdb550c.tar.xz
mltk-076c4f7a27905b6e14ef5380514da33dfcdb550c.zip
[pam] Add missing config file for key handling (DFS, cifs.upcall etc.)
Diffstat (limited to 'core/modules/pam')
-rw-r--r--core/modules/pam/data/etc/request-key.conf13
1 files changed, 13 insertions, 0 deletions
diff --git a/core/modules/pam/data/etc/request-key.conf b/core/modules/pam/data/etc/request-key.conf
new file mode 100644
index 00000000..bebaf27f
--- /dev/null
+++ b/core/modules/pam/data/etc/request-key.conf
@@ -0,0 +1,13 @@
+#OP TYPE DESCRIPTION CALLOUT INFO PROGRAM ARG1 ARG2 ARG3 ...
+#====== ======= =============== =============== ===============================
+create dns_resolver * * /sbin/key.dns_resolver %k
+create user debug:* negate /bin/keyctl negate %k 30 %S
+create user debug:* rejected /bin/keyctl reject %k 30 %c %S
+create user debug:* expired /bin/keyctl reject %k 30 %c %S
+create user debug:* revoked /bin/keyctl reject %k 30 %c %S
+create user debug:loop:* * |/bin/cat
+create user debug:* * /usr/share/keyutils/request-key-debug.sh %k %d %c %S
+create cifs.spnego * * /usr/sbin/cifs.upcall -t %k
+create dns_resolver * * /usr/sbin/cifs.upcall %k
+negate * * * /bin/keyctl negate %k 30 %S
+
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2024-05-22 20:28:15 +0200