PAM_KEYRING
Welcome to the new home of pam_keyring. PAM_KEYRING is a pam module that launches the gnome-keyring-daemon and then unlocks a keyring using your login password.
Why aren't more applications using gnome-keyring? Two very simple reasons, it currently lacks convenience and integration. This is where pam_keyring comes into play. The module was first written by Mike Petullo to solve the problem of having to unlock your keyring seconds after you just logged in to your desktop. Mike no longer had the time to maintain the module, so I offered to take over the project.
What has changed?
- I have updated pam_keyring.so to better match the coding standards of pam 0.99
- I have added some compatibility code so it will now work with older versions of pam
- gnome-keyring-utility is renamed to pam-keyring-utility and added to the build process
- pam-keyring-utility has been updated to better match gnome-keyring coding styles
- pam-keyring-utility now uses the g_option command line parser
Requirements: gnome-keyring >= 0.4.8
gnome-session >= 2.10
pam >= 0.77
Installation: You need to add the following lines to your /etc/pam.d/gdm file.
auth optional pam_keyring.so try_first_pass
session optional pam_keyring.so
On Fedora Core 5 here is my complete file
auth required pam_env.so
auth optional pam_keyring.so try_first_pass
auth include system-auth
account required pam_nologin.so
account include system-auth
password include system-auth
session include system-auth
session required pam_loginuid.so
session optional pam_console.so
session optional pam_keyring.so
If you do not specify a keyring with the keyring=keyring_name option on the auth line, pam_keyring tries to unlock the default keyring with your password. If a keyring is specified with the keyring option and it doesn't exist in your profile, the keyring is created with the password you used to login.
I am currently only offering a tarball and a fedora core 5 rpm of my newest version of pam_keyring. If you have questions or problems feel free to email me
here.
Downloads: pam_keyring-0.0.8.tar.gz pam_keyring-0.0.8-1.fc5.i386.rpmpam_keyring-0.0.8-1.fc5.x86_64.rpmpam_keyring-0.0.8-1.fc5.src.rpmTesting:
**update** These are updated packages that include gnome-cvs versions of gnome-keyring and gnome-keyring-manager. All packages below support changing your keyring password now.
One of the major problems people are having right now is that they created a keyring with a password that is different than their login. I have finally stepped up and created a change keyring password patch from gnome-keyring. Until it is accepted and released I will provide these testing rpm's and source code to people that want to use pam_keyring, but need to change their password first. I have not and won't enable the change authtok functionality in the pam module until gnome-keyring officially supports changing passwords.
Once you have installed pam_keyring and gnome-keyring from Testing Downloads, you will need to log out and back on. Then you can run "/usr/libexec/pam-keyring-tool -c" to change the default password. You can specify a different keyring using the -k option. Alternatively you can now change a password through gnome-keyring-manager. Download and install gnome-keyring-manager from this site. Then highlight the keyring and select Change Keyring Password from the Keyring menu of gnome-keyring-manager.
Testing Downloads:pam_keyring-0.0.8.tar.gzpam_keyring-0.0.8-2.fc5.i386.rpmpam_keyring-0.0.8-2.fc5.src.rpmgnome-keyring-0.5.0.tar.bz2gnome-keyring-0.5.0-1.20060605cvs.fc5.i386.rpmgnome-keyring-devel-0.5.0-1.20060605cvs.fc5.i386.rpmgnome-keyring-0.5.0-1.20060605cvs.fc5.src.rpmgnome-keyring-manager-2.14.0.tar.bz2gnome-keyring-manager-2.14.0-3.20060605cvs.fc5.i386.rpmgnome-keyring-manager-2.14.0-3.20060605cvs.fc5.src.rpm
Heka Networks, LLC specializes in Open Source software and Network Security.