Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 302384 - dev-db/postgresql-server does not install PAM configuration file
Summary: dev-db/postgresql-server does not install PAM configuration file
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: New packages (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: PgSQL Bugs
: 352972 (view as bug list)
Depends on:
Reported: 2010-01-26 23:48 UTC by Diego Elio Pettenò (RETIRED)
Modified: 2011-03-21 04:16 UTC (History)
3 users (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Diego Elio Pettenò (RETIRED) gentoo-dev 2010-01-26 23:48:52 UTC
[pid 18897] stat64("/etc/pam.d", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
[pid 18897] open("/etc/pam.d/postgresql", O_RDONLY|O_LARGEFILE) = -1 ENOENT (No such file or directory)
[pid 18897] open("/etc/pam.d/other", O_RDONLY|O_LARGEFILE) = 4

What about providing the default PAM file?
Comment 1 Aaron W. Swenson gentoo-dev 2010-07-21 17:21:06 UTC
There doesn't seem to be a default PAM file in the package. The best I can find is that copying an existing PAM file to the /etc/pam.d/postgresql file is the solution.

Perhaps the ebuilds should conditionally:

   cp /etc/pam.d/system-services /etc/pam.d/postgresql

What are your thoughts?
Comment 2 Diego Elio Pettenò (RETIRED) gentoo-dev 2010-07-21 17:39:57 UTC
Definitely *not*.

pamd_mimic system-auth auth account session

in src_install after inheriting pam.eclass
Comment 3 Aaron W. Swenson gentoo-dev 2010-07-21 22:25:50 UTC
Shouldn't that be:
pamd_mimic system-auth postgresql auth account session
Comment 4 Diego Elio Pettenò (RETIRED) gentoo-dev 2010-07-21 22:28:00 UTC
Yes I always forget one parameter it seems.
Comment 5 Aaron W. Swenson gentoo-dev 2011-01-27 18:03:20 UTC
Diego -

Given all the work you've been doing with PAM, is the comment 3 still correct?
Comment 6 Diego Elio Pettenò (RETIRED) gentoo-dev 2011-01-27 19:41:19 UTC
Yeppers, since PostgreSQL is not a login system it isn't influenced by the recent changes.

Although I'm not sure if it uses session, but that's beside the point now.
Comment 7 Markos Chandras (RETIRED) gentoo-dev 2011-01-28 08:39:02 UTC
*** Bug 352972 has been marked as a duplicate of this bug. ***
Comment 8 Tully Gray 2011-01-29 02:26:49 UTC
When using Kerberos, an additional option should be passed to the module. The keytab for the postgresql PAM module should match the "krb_server_keyfile" directive in postgresql.conf, using the "keytab" option.
Comment 9 Aaron W. Swenson gentoo-dev 2011-03-21 04:16:41 UTC

  21 Mar 2011; Aaron W. Swenson <>
  +postgresql-server-8.2.20-r1.ebuild, +postgresql-server-8.3.14-r1.ebuild,
  +postgresql-server-8.4.7-r1.ebuild, +postgresql-server-9.0.3-r1.ebuild:
  Fixes bugs 274836, 302384, 323683, 325709, 347005, 347223, 353687 and