摘要
Linux-PAM(用于Linux的PAM(可插式认证模块))是一组共享库,使用这些模块,系统管理者可以自由选择应用程序使用的认证机制。文中分析了Linux-PAM机制的工作原理,介绍了PAM服务模块和配置文件,阐述了如何在应用程序中使用PAM认证。通过Linux-PAM提供的API(应用编程接口),将系统提供的服务和该服务的认证方式分开,使得系统管理者可以根据需要给出不同的服务配置和不同的认证方式而无需更改服务程序。
Linux-PAM is composed of shared data bases. Using these modules, the system manager can select freely the test mechanism of the used application program. This paper analyses in-depth the mechanism of Linux-PAM and introduces the service modules and authentication files. Moreover how to use Linux-PAM in the application programs to authenticate is illustrated. The adoption of Linux-PAM provided API, the system provided services and the service authentication method are separated, making the system administrator can give different services required to configure different authentication methods without having to change the service program.
出处
《信息化研究》
2009年第5期62-64,共3页
INFORMATIZATION RESEARCH