GitHub - skarnet/pamela: A PAM wrapper for encapsulation of dynamic module loading

skarnet / pamela Public

Notifications You must be signed in to change notification settings
Fork 2
Star 13

A PAM wrapper for encapsulation of dynamic module loading

skarnet.org/software/pamela/

ISC license

13 stars 2 forks Branches Tags Activity

Star

Notifications

Branches Tags

Name		Name	Last commit message	Last commit date
Latest commit History 38 Commits
doc		doc
package		package
src		src
tools		tools
.gitignore		.gitignore
AUTHORS		AUTHORS
CONTRIBUTING		CONTRIBUTING
COPYING		COPYING
DCO		DCO
INSTALL		INSTALL
Makefile		Makefile
NEWS		NEWS
README		README
README.macosx		README.macosx
README.solaris		README.solaris
configure		configure
patch-for-solaris		patch-for-solaris

Repository files navigation

pamela - a PAM wrapper for secure execution
-------------------------------------------

 pamela is a library implementing the PAM API.

 Traditional PAM implementations such as Linux-PAM
load PAM modules dynamically into the application's address
space. This is unsafe and exposes a lot of attack surface.
Instead, pamela encapsulates the inner workings of PAM
in a binary which is itself linked against Linux-PAM and
performs all the module loading in its own address space;
pamela provides an implementation of the PAM user API that
communicates with that binary, keeping the application's
address space free of external modules. 

 See http://skarnet.org/software/pamela/ for details.


* Installation
  ------------

 See the INSTALL file.


* Contact information
  -------------------

 Laurent Bercot <ska-skaware at skarnet.org>