6 repositorios
Custom Pluggable Authentication Modules for integrating new authentication methods into the Linux system pipeline.
Distinct from Functional Module Integrators: Specific to the Linux Pluggable Authentication Module (PAM) architecture, distinct from general software plugins.
Explore 6 awesome GitHub repositories matching operating systems & systems programming · PAM Modules. Refine with filters or upvote what's useful.
Howdy is a biometric authentication system for Linux that uses infrared cameras to provide passwordless login and privileged access. It functions as a Pluggable Authentication Module to integrate facial recognition into the standard Linux authentication pipeline. The system relies on near-infrared camera feeds and facial models to verify identity, ignoring visible light interference. Biometric data is stored as encrypted mathematical templates on the local disk to ensure that facial models are not transmitted over a network. The project includes tools for face model management, infrared came
Hooks into the Pluggable Authentication Modules system to intercept and satisfy login requests for Linux environments.
ejabberd is a multi-protocol communication gateway and scalable server that implements XMPP for instant messaging and presence. It serves as a federated messaging platform, enabling interoperable communication and user discovery between different remote servers. The project functions as an MQTT message broker for lightweight IoT device communication and a SIP signaling server for managing voice and multimedia signaling traffic. It allows for the hosting of multiple domains on a single instance using virtual hosting to isolate configurations and prevent username conflicts. The system provides
Verifies user identities against the system's Pluggable Authentication Modules stack.
Maddy is a modular mail server that assembles a complete email system by connecting small, single-purpose modules through a declarative configuration file. Rather than a monolithic stack, it lets operators compose message processing, storage, authentication, and security enforcement from interchangeable building blocks, with each module handling a specific function like receiving SMTP connections, verifying credentials, or applying policy checks. The server distinguishes itself through its flexible authentication and security architecture. It delegates user verification to external systems in
Validates user credentials against the system's Pluggable Authentication Modules (PAM) stack, commonly used for local system logins.
AliSQL is a fork of MySQL by Alibaba that extends the relational database management system with enhancements for high performance, scalability, and enterprise-grade availability. It retains the core MySQL identity as a SQL-based database for storing, organizing, and retrieving structured data, while adding optimizations for large-scale transactional and analytical workloads. The project differentiates itself through a set of Alibaba-specific improvements, including a columnar engine for accelerating analytical queries directly on MySQL tables, and a distributed, shared-nothing NDB Cluster en
Authenticates MySQL users through the Pluggable Authentication Modules interface, supporting Unix passwords and LDAP.
PgBouncer is a lightweight middleware proxy server and connection pooler for PostgreSQL. It acts as a database connection manager and load balancer, reducing system overhead by managing a pool of reusable connections and distributing incoming traffic across multiple backend servers. The project distinguishes itself through a protocol-level proxying approach that handles authentication and TLS encryption without parsing underlying SQL queries. It provides specialized support for mapping named prepared statements across different backend connections and implements a socket-sharing process model
Delegates user authentication to system-level pluggable authentication modules to verify identities using OS credentials.
Este proyecto es un Pluggable Authentication Module para sistemas Linux que impone la verificación de identidad de múltiples factores. Se integra directamente en el stack de autenticación del sistema para requerir contraseñas de un solo uso basadas en tiempo junto con credenciales de usuario estándar, proporcionando un mecanismo para asegurar el acceso a shell local y remoto. El módulo se distingue por su implementación del algoritmo de contraseña de un solo uso basada en tiempo, que incluye soporte integrado para compensación de desviación de reloj para tener en cuenta discrepancias de tiempo entre servidores y dispositivos de usuario. Gestiona claves secretas de usuario individuales a través de un mecanismo de persistencia basado en archivos locales y soporta apilamiento modular, permitiendo a los administradores pasar credenciales entre múltiples módulos de autenticación dentro de un solo flujo de inicio de sesión. Más allá de la verificación central, la herramienta proporciona ajustes de política configurables que permiten a los administradores definir periodos de gracia y gestionar ubicaciones de archivos secretos. Facilita la sincronización de secretos de autenticación únicos con aplicaciones móviles, asegurando que la imposición de múltiples factores permanezca funcional mientras se mantienen los estándares de seguridad a nivel de sistema.
Integrates custom authentication logic directly into the system login stack via the standard pluggable module interface.