Page MenuHomeFreeBSD

New port: security/pam_pkcs11

Authored by on Sun, Sep 13, 8:33 AM.



pam_pkcs11 is a login module allowing a X.509 certificate
based user login. The certificate and its dedicated private
key are thereby accessed by means of an appropriate PKCS#11
module. For the verification of the users' certificates,
locally stored CA certificates as well as either online or
locally accessible CRLs are used.

PAM-PKCS#11 package provides:

A PAM module able to:
    Use certificates to get user credentials
    Deduce a login based on provided certificate
Several tools:
    Standalone cert-to-login finder tool
    Certificate contents viewer
    Card Event status monitor, to trigger actions on card insert/removal

These changes are made under the sponsorship from the FreeBSD Foundation.


Diff Detail

rP FreeBSD ports repository
Automatic diff as part of commit; lint not applicable.
Automatic diff as part of commit; unit tests not applicable.

Event Timeline requested review of this revision.Sun, Sep 13, 8:33 AM created this revision. edited the summary of this revision. (Show Details)Sun, Sep 13, 8:45 AM
lwhsu added a reviewer: lwhsu.Sun, Sep 13, 9:04 AM
  • www/firefox: Replace the occurrence of /usr/xxx with /usr/local/xxx for etc/*.example
  • www/firefox: Some tailoring jobs
lwhsu added inline comments.Sun, Sep 13, 6:16 PM
91 ↗(On Diff #76985)

We usually do these in post-patch:

  • security/pam_pkcs11: Do path replacement of etc/*.example in post-patch target marked an inline comment as done.Sun, Sep 13, 11:55 PM
  • security/pam_pkcs11: Fix .example file paths in PAM_PKCS11_EXAMPLEDOCS
This revision was not accepted when it landed; it landed in state Needs Review.Mon, Sep 14, 8:34 PM
This revision was automatically updated to reflect the committed changes.