summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rwxr-xr-xdebian/rules2
-rw-r--r--debian/vyatta-quagga.pam3
-rw-r--r--debian/vyatta-quagga.quagga.pam5
3 files changed, 6 insertions, 4 deletions
diff --git a/debian/rules b/debian/rules
index f5f7e932..c5b8cae4 100755
--- a/debian/rules
+++ b/debian/rules
@@ -126,7 +126,7 @@ binary-arch: build install
dh_installdocs
dh_installexamples
dh_installinit
- dh_installpam
+ dh_installpam --name=quagga
dh_installlogrotate
dh_strip
diff --git a/debian/vyatta-quagga.pam b/debian/vyatta-quagga.pam
deleted file mode 100644
index 093e1729..00000000
--- a/debian/vyatta-quagga.pam
+++ /dev/null
@@ -1,3 +0,0 @@
-# Any user may call vtysh but only those belonging to the group quaggavty can
-# actually connect to the socket and use the program.
-auth sufficient pam_permit.so
diff --git a/debian/vyatta-quagga.quagga.pam b/debian/vyatta-quagga.quagga.pam
new file mode 100644
index 00000000..6dd5d474
--- /dev/null
+++ b/debian/vyatta-quagga.quagga.pam
@@ -0,0 +1,5 @@
+# This allows root to do vtysh without passwords
+auth sufficient pam_rootok.so
+
+# Only users in group quaggavty can run vtysh
+auth required pam_wheel.so trust group=quaggavty
generated by cgit v1.2.3 (git 2.25.1) at 2025-09-12 23:40:25 +0000