1# PAM23auth.pam module implements authentication using libpam. Alternatively it can be configured to4use helper binary like auth.external module does.56maddy should be built with libpam build tag to use this module without7'use_helper' directive.89```10go get -tags 'libpam' ...11```1213```14auth.pam {15 debug no16 use_helper no17}18```1920## Configuration directives2122### debug _boolean_23Default: `no`2425Enable verbose logging for all modules. You don't need that unless you are26reporting a bug.2728---2930### use_helper _boolean_31Default: `no`3233Use `LibexecDirectory/maddy-pam-helper` instead of directly calling libpam.34You need to use that if:35361. maddy is not compiled with libpam, but `maddy-pam-helper` is built separately.372. maddy is running as an unprivileged user and used PAM configuration requires additional privileges (e.g. when using system accounts).3839For 2, you need to make `maddy-pam-helper` binary setuid, see40README.md in source tree for details.4142TL;DR (assuming you have the maddy group):4344```45chown root:maddy /usr/lib/maddy/maddy-pam-helper46chmod u+xs,g+x,o-x /usr/lib/maddy/maddy-pam-helper47```48