pam_dotfile is a PAM module that enables users to have multiple passwords for a single account, each password designated for a distinct service.
The software is equipped with different PAM parameters that offer several functionalities. The debug parameter ensures that the module is verbose and records everything in syslogs(3). The use_first_pass parameter uses the password supplied by a previous module and doesn't prompt for the same. The try_first_pass parameter is similar to use_first_pass, except that it doesn't fail if there is no password supplied. Instead, it queries the user. The use_authtok parameter is synonymous with use_first_pass.
Pam_dotfile's rootok parameter doesn't deny access to users with uid == 0, while nullok enables access for null passwords. The fork parameter always forks for opening password files via the helper tool, whereas nofork never forks. The no_warn parameter suppresses warnings to syslogs(3).
Finally, the stat_only_home parameter verifies group/world readability inside the home directory. If the configuration file is /home/waldo/.pam/service, only /home/waldo/.pam and /home/waldo are tested. This is particularly useful if the home directories contain symbolic links. The nocompat05 parameter disables compatibility with pam_dotfile.
Overall, Pam_dotfile is a great tool for users who want greater flexibility in setting multiple passwords for different services. Its different PAM parameters ensure that users can personalize their accounts while maintaining optimum security.
Version 0.7: N/A