pam session as root

[Matthew Vernon]

Michael Stone <mstone at cs.loyola.edu> writes:

> 
> Beyond any more general questions of whether pam sessions *should* be
> run as root, is there an immediate security concern with moving the

I believe that the original PAM authors intended pam_session to be run
as root. Whether this is sensible or not is left as an exercise...

Matthew

-- 
"At least you know where you are with Microsoft."
"True. I just wish I'd brought a paddle."
http://www.debian.org