Authentication

• Default authentication

  • User enters username and password via login
  • Passwords are hashed (using MD5 or DES)
    • Encryption cannot be reversed
  • Stored in /etc/passwd or /etc/shadow

• Pluggable authentication modules (PAMs)

  • Can reconfigure the system at run time to include enhanced authentication techniques
  • For example:
    • Disallow terms found in a dictionary and require users to choose new passwords regularly
    • Supports smart cards, Kerberos and voice authentication

Previous slide

Next slide

Back to first slide

View graphic version