The documentation states examples of how to setup virtual users authenticated with pam
However, in Leap 42.2, there is no pam_userdb.so module installed which is used in the example.
Other websites also state/use the pam_userdb.so module.
Does anyone have a tutorial or explanation/link? how to set up vsftpd with virtual users in Leap 42.2
Or is it possible to install the pam_userdb.so module?
But to get it from where; how to install?
I tried the with Yast and looked on the opensuse site for pam packages - but it is not there.
I assume YaST > Software > Software Manager and then the Search.
Did you check the RMP “Provides” box when searching. Because it seems that you are looking for a file and thus needs the package that provides it. And that package may have another name.
Pls describe your objective more clearly (eg You wish to set up vsftpd with its own ftp users, not the same as system Users)
and
Which documentation you’re using. If you are using something online, provide the URL. If it’s part of the offline documentation installed on your machine, provide the path and file name.
But yes, pam_userdb was broken by design and insecure.
Indeed, just run “strings” over the respective DB and you will get the usernames/passwords in the clear, not good.
So I did face the same problem and decided to find something better which is still easy to use and not overkill for a handful of users (so SQL data base backends are right out).
I would also use “mkpasswd” for creating hashed password entries as it will offer you SHA256/SHA512 instead of crappy DES/MD5 provided by “htpasswd” or “openssl passwd”.
I also skimmed various published blogs how to set up using pam_mysql for those who have more Users and might need the performance of a relational database and IMO I see that as a likely viable option, too. Although blogs are generally for other distros, once you have the required packages installed on openSUSE, it looks like setting up vsftpd and mysql hasn’t changed in over 6 years (posts going back as far as 2010 are likely still useful). I’d imagine if someone didn’t want to set up mariadb/mysql, sqlite should be a viable substitute as always (I found only one post describing that).