User guide
Appendix D - Linux-PAM
344 BLACK BOX ® Advanced Console Server
pam_env This module allows the (un)setting of environment variables. The use of
previously set environment variables as well as PAM_ITEMs such as
PAM_RHOST is supported.
pam_filter This module was written to offer a plug-in alternative to programs like
ttysnoop (XXX - need a reference). Since a filter that performs this
function has not been written, it is currently only a toy. The single filter
provided with the module simply transposes upper and lower case letters
in the input and output streams. (This can be very annoying and is not
kind to termcap-based editors.)
pam_group This module provides group settings based on the user’s name and the
terminal they are requesting a given service from. It takes note of the
time of day.
pam_issue This module presents the issue file (/etc/issue by default) when
prompting for a username.
pam_lastlog This session module maintains the /var/log/lastlog file. It adds an open
entry when called via the pam_open_session()function and completes it
when pam_close_session() is called. This module can also display a line
of information about the last login of the user. If an application already
performs these tasks, it is not necessary to use this module.
pam_limits This module, through the Linux-PAM open-session hook, sets limits on
the system resources that can be obtained in a user session. Its actions are
dictated more explicitly through the configuration file discussed in
/etc/security/pam_limits.conf.
pam_listfile The listfile module provides a way to deny or allow services based on an
arbitrary file.
pam_motd This module outputs the motd file (/etc/motd by default) upon successful
login.
pam_nologin Provides standard Unix nologin authentication.
pam_permit This module should be used with extreme caution. Its action is to always
permit access. It does nothing else.
pam_radius Provides Radius server authentication and accounting.