Steve Langasek <vor...@debian.org> writes: > Unfortunately, there's no central way to configure PAM modules only for > use in login sessions. As with pam_selinux and pam_loginuid, the only > way to do this is for each service to include the module directly in > their own PAM config.
I gather this isn't the same thing as what common-session-noninteractive is for? I hadn't completely followed how that worked. Regardless, thanks! I spent some time day before yesterday debugging this with MIT Kerberos upstream, since the behavior of keyring caches without an active session is really weird. Everything works but then the results disappear. -- Russ Allbery (r...@debian.org) <http://www.eyrie.org/~eagle/> -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
