I stumbled across a reference to pam.conf(5) in the login man-page. However pam.conf(5) and pam(8) man-pages are not available in -CURRENT. Fix: Don't know for sure. At least pam(8) should be provided. man -k pam turns up not a single page describing the whole pam-mechanism. References to pam.conf(5) should be deleted IMHO. How-To-Repeat: man login; Note the references to pam(8) and /etc/pam.conf I grepped the src tree for "pam.conf|pam 8", some false positives appear, however I think you get the picture UPDATING: rather than /etc/pam.conf. If you have an unmodified UPDATING: pam.conf, just delete it after your next mergemaster run. If UPDATING: adding the following in pam.conf: contrib/openpam/lib/openpam_configure.c: "/etc/pam.conf", contrib/openpam/lib/openpam_configure.c: "/usr/local/etc/pam.conf", contrib/openpam/README: - Reads configuration from /etc/pam.d/, /etc/pam.conf, contrib/openpam/README: /usr/local/etc/pam.d/ and /usr/local/etc/pam.conf, in that order; contrib/openpam/HISTORY: - ENHANCE: Add /usr/local/etc/pam.conf to policy search path. contrib/pam_modules/pam_passwdqc/README:(the "password" lines in /etc/pam.d/passwd or /etc/pam.conf). The crypto/heimdal/lib/auth/pam/CVS/Entries:/pam.conf.add/1.1.1.3/Tue Feb 13 16:46:17 2001//TRELENG_5_1 crypto/heimdal/lib/auth/pam/Makefile.am:EXTRA_DIST = pam.conf.add crypto/heimdal/lib/auth/pam/Makefile.in:EXTRA_DIST = pam.conf.add crypto/heimdal/lib/auth/pam/pam.conf.add:--- /etc/pam.conf.DIST Mon Jul 20 15:37:46 1998 crypto/heimdal/lib/auth/pam/pam.conf.add:+++ /etc/pam.conf Tue Feb 15 19:39:12 2000 crypto/heimdal/lib/auth/pam/pam.conf.add:# To get this to work, you will have to add entries to /etc/pam.conf crypto/heimdal/lib/auth/pam/pam.conf.add:# To make login kerberos-aware, you might change pam.conf to look crypto/openssh/INSTALL:authentication. On HP-UX 11 and Solaris, the standard /etc/pam.conf etc/pam.d/README:file does not exist, /etc/pam.conf is searched for entries matching etc/pam.d/README:is a summary of the format for the pam.conf and /etc/pam.d/* files. lib/libpam/modules/pam_lastlog/pam_lastlog.8:.Xr pam.conf 5 , lib/libpam/modules/pam_lastlog/pam_lastlog.8:.Xr pam 8 lib/libpam/modules/pam_chroot/pam_chroot.8:.Xr pam.conf 5 , lib/libpam/modules/pam_chroot/pam_chroot.8:.Xr pam 8 lib/libpam/modules/pam_guest/pam_guest.8:.Xr pam.conf 5 , lib/libpam/modules/pam_guest/pam_guest.8:.Xr pam 8 lib/libpam/modules/pam_unix/pam_unix.8:.Xr pam.conf 5 , lib/libpam/modules/pam_unix/pam_unix.8:.Xr pam 8 lib/libpam/modules/pam_deny/pam_deny.8:.Xr pam.conf 5 , lib/libpam/modules/pam_deny/pam_deny.8:.Xr pam 8 lib/libpam/modules/pam_echo/pam_echo.8:.Xr pam.conf 5 , lib/libpam/modules/pam_echo/pam_echo.8:.Xr pam 8 lib/libpam/modules/pam_exec/pam_exec.8:.Xr pam.conf 5 , lib/libpam/modules/pam_exec/pam_exec.8:.Xr pam 8 lib/libpam/modules/pam_ftpusers/pam_ftpusers.8:.Xr pam.conf 5 , lib/libpam/modules/pam_ftpusers/pam_ftpusers.8:.Xr pam 8 lib/libpam/modules/pam_group/pam_group.8:.Xr pam.conf 5 , lib/libpam/modules/pam_group/pam_group.8:.Xr pam 8 lib/libpam/modules/pam_krb5/pam_krb5.8:.Xr pam.conf 5 , lib/libpam/modules/pam_krb5/pam_krb5.8:.Xr pam 8 lib/libpam/modules/pam_ksu/pam_ksu.8:.Xr pam.conf 5 , lib/libpam/modules/pam_ksu/pam_ksu.8:.Xr pam 8 lib/libpam/modules/pam_tacplus/pam_tacplus.8:.Xr pam 8 lib/libpam/modules/pam_login_access/login.access.5:.Xr pam 8 lib/libpam/modules/pam_login_access/pam_login_access.8:.Xr pam.conf 5 , lib/libpam/modules/pam_login_access/pam_login_access.8:.Xr pam 8 lib/libpam/modules/pam_opie/pam_opie.8:.Xr pam.conf 5 , lib/libpam/modules/pam_opie/pam_opie.8:.Xr pam 8 lib/libpam/modules/pam_opieaccess/pam_opieaccess.8:.Xr pam.conf 5 , lib/libpam/modules/pam_opieaccess/pam_opieaccess.8:.Xr pam 8 , lib/libpam/modules/pam_ssh/pam_ssh.8:.Xr pam.conf 5 , lib/libpam/modules/pam_ssh/pam_ssh.8:.Xr pam 8 lib/libpam/modules/pam_passwdqc/pam_passwdqc.8:.Xr pam.conf 5 , lib/libpam/modules/pam_passwdqc/pam_passwdqc.8:.Xr pam 8 lib/libpam/modules/pam_permit/pam_permit.8:.Xr pam.conf 5 , lib/libpam/modules/pam_permit/pam_permit.8:.Xr pam 8 lib/libpam/modules/pam_radius/pam_radius.8:.Xr pam 8 lib/libpam/modules/pam_rhosts/pam_rhosts.8:.Xr pam.conf 5 , lib/libpam/modules/pam_rhosts/pam_rhosts.8:.Xr pam 8 lib/libpam/modules/pam_rootok/pam_rootok.8:.Xr pam.conf 5 , lib/libpam/modules/pam_rootok/pam_rootok.8:.Xr pam 8 lib/libpam/modules/pam_securetty/pam_securetty.8:.Xr pam.conf 5 , lib/libpam/modules/pam_securetty/pam_securetty.8:.Xr pam 8 lib/libpam/modules/pam_self/pam_self.8:.Xr pam.conf 5 , lib/libpam/modules/pam_self/pam_self.8:.Xr pam 8 lib/libpam/modules/pam_nologin/pam_nologin.8:.Xr pam.conf 5 , lib/libpam/modules/pam_nologin/pam_nologin.8:.Xr pam 8 libexec/ftpd/ftpd.c: * error occurs (e.g., the "/etc/pam.conf" file is missing) then this libexec/lukemftpd/pamize.h: * error occurs (e.g., the "/etc/pam.conf" file is missing) then this libexec/rshd/rshd.8:.It Pa /etc/pam.conf libexec/rshd/rshd.8:.Pa /etc/pam.conf release/picobsd/tinyware/login/pico-login.c: * error occurs (e.g., the "/etc/pam.conf" file is missing) then this release/doc/fr_FR.ISO8859-1/installation/common/upgrade.sgml:<filename>pam.conf</filename>, release/doc/de_DE.ISO8859-1/installation/common/upgrade.sgml: <filename>pam.conf</filename>, release/doc/en_US.ISO8859-1/installation/common/upgrade.sgml:<filename>pam.conf</filename>, share/examples/etc/README.examples:pam.conf - configuration file for pam(8) share/man/man7/hier.7:.Xr pam 8 share/man/man7/hier.7:.Xr pam 8 usr.bin/login/login.1:.Xr pam 8 . usr.bin/login/login.1:.It Pa /etc/pam.conf usr.bin/login/login.1:.Pa /etc/pam.conf usr.bin/login/login.1:.Xr pam 8 usr.bin/login/login.access.5:.Xr pam 8 usr.bin/login/login.c: * error occurs (e.g., the "/etc/pam.conf" file is missing) then this usr.bin/su/su.1:.Bl -tag -width /etc/pam.conf -compact usr.bin/su/su.1:.It Pa /etc/pam.conf usr.bin/su/su.1:.Pa /etc/pam.conf usr.bin/su/su.1:.Xr pam 8 usr.sbin/sysinstall/installUpgrade.c: { JUST_COPY, "pam.conf", TRUE, NULL },
On Thu, 19 Feb 2004 23:00:59 +0100 (CET) Ulrich Spoerlein <q@uni.de> wrote: > > >Number: 63084 > >Category: docs > >Synopsis: Several Man-pages reference non-existant pam.conf(5) and pam(8) on 5.x Wow, you've read my mind (or private emails). DES and I were just discussing this issue yesterday and a fix is in the works. I have other tasks at hand so don't expect anything to come of this for another month. -- Tom Rhodes
Ulrich Spoerlein <q@uni.de> writes: > Don't know for sure. At least pam(8) should be provided. man -k pam > turns up not a single page describing the whole pam-mechanism. There's pam(3), but there's still a need for a pam(8) page. > References to pam.conf(5) should be deleted IMHO. Why? Don't you think people need to know how to configure PAM? DES --=20 Dag-Erling Sm=F8rgrav - des@des.no
Responsible Changed From-To: freebsd-doc->des PAM is mine.
There is a PAM article in the FreeBSD documentation: https://www.freebsd.org/doc/en/articles/pam/ Perhaps Someone[tm] would be inspired to turn it (or parts of it) into a pam(8) man page. There pam.conf(5) man page is adequate but not entirely up-to-date.
man 5 pam.conf exists now(tested in 12-stable), so this can probably be closed.
I created a new Phabricator review for pam(8): https://reviews.freebsd.org/D32530 This is largely based on the article by DES.
Created attachment 228781 [details] Remove references to non-existent pam(8) Remove references to non-existent pam(8). Add some references to pam.conf(5).
(In reply to Felix Johnson from comment #7) The patch is fine but please hold on, I'm going to try to make time to write a pam(7) page so you can update the xrefs rather than remove them.