Skip to main content
Unix & Linux

You are not logged in. Your edit will be placed in a queue until it is peer reviewed.

We welcome edits that make the post easier to understand and more valuable for readers. Because community members review edits, please try to make the post substantially better than how you found it, for example, by fixing grammar or adding additional resources and hyperlinks.

Required fields*

6
  • Am I correct if I say that /usr/bin/login, /usr/bin/sudo, /usr/bin/su, /usr/bin/ssh, etc., are examples of applications that may (or may not) use the crypt or PAM? Commented Sep 2, 2023 at 18:51
  • 1
    @JLC, in practice, all the programs you mention support PAM. (Well -- it's the SSH daemon, so sshd, that's responsible for PAM support, not the client; but presuming the daemon is what you mean...) Commented Sep 2, 2023 at 19:46
  • sshd is a special case 'cos it can optionally use PAM or not (the usePAM entry in sshd_config). If you do an ls /etc/pam.d you'll see lots of entries (eg su, sudo, screen, passwd, login and more). These are the PAM configs for those programs. Commented Sep 2, 2023 at 20:38
  • So brushing GUI under the carpet for the moment, what have we got: getty calls login and login uses PAM? Commented Sep 3, 2023 at 7:21
  • @MarkMorganLloyd Yeah. We can see login uses PAM by seeing that it uses libpam; eg. % ldd /bin/login | grep libpam libpam.so.0 => /lib64/libpam.so.0 (0x00007f87be58e000) libpam_misc.so.0 => /lib64/libpam_misc.so.0 (0x00007f87be38a000) Commented Sep 3, 2023 at 12:24