PAM ListMySQL Module combines functions of pam_mysql and pam_listfile to enhance authentication access in software.
For instance, you can specify a username that can access and open the connection to MySQL, and has permission to read the table with the passwords. You can also add a password for the MySQL user, set the machine running the MySQL server, specify the name of the database that contains the table with the user/password combination, and even choose which table you want to use for the user/password checking.
Moreover, you can take advantage of this software's flexibility by creating more complex controls via tables. You can assign a name to the column that has the field describing the type indicated by the type's option. You can also add additional criteria for the query using the "where" option. Note that you probably need to use libpam's extended option format when utilizing this option.
The item option is used to search for a specific type of data, and you can choose from user, tty, rhost, ruser, group, and shell. The sense option specifies what action to take if the item is found in the table. If the item is not found in the table, the opposite action is requested, and it can be either "allow" or "deny". Finally, you can set the path of the configuration file with the conf_file option. Please refer to the configuration example to learn the syntax for this option.
The PAM ListMySQL Module has the following requirements: PAM and MySQL server. In recent updates, MySQL options can now go in a configuration file to protect them with file permissions. Additionally, this software has undergone small bug fixes, and the documentation has been updated. Overall, PAM ListMySQL Module is a powerful software that brings in a lot of options for customization and flexibility that you can use to your advantage.
Version 0.1.3: N/A