News

Apr 06 2008 — pam_mount 0.35 released

The mount option was not correctly split. SSH-based volumes are now accessible without entering the password twice. mount.crypt waits for udev to create dmcrypt nodes, and an inversion was fixed. (0 comments)

Feb 22 2008 — pam_mount 0.33 released

A few interoperability fixes and improvements have been merged. (0 comments)

Dec 06 2007 — pam_mount 0.32 released

Fixes an unintentional variable zeroing and removes the mntagain hack. (0 comments)

pam_mount is a Pluggable Authentication Module that can mount volumes for a user session

This module is aimed at environments with central file servers that a user wishes to mount on login and unmount on logout, such as (semi-)diskless stations where many users can logon and where statically mounting the entire /home from a server is a security risk, or listing all possible volumes in /etc/fstab is not feasible.

• Users can define their own list of volumes without having to change (possibly non-writable) global config files.
• Single sign-on feature — the user needs to type the password just once
• Transparent mount process
• No stored passwords
• Volumes are unmounted on logout, freeing system resources and not leaving data exposed.

The module also supports mounting local filesystems of any kind the normal mount utility supports, with extra code to make sure certain volumes are set up properly because often they need more than just a mount call, such as encrypted volumes. This includes SMB/CIFS, NCP, davfs2, FUSE, losetup crypto, dm-crypt/cryptsetup, LUKS and truecrypt.