asis"><em>root</em></span>,
      the user will <span class="emphasis"><em>not</em></span> forward cookies to
      other users.
    </p><p>
      Both the import and export files support wildcards (such as
      <span class="emphasis"><em>*</em></span>). Both the import and export files
      can be empty, signifying that no users are allowed.
    </p></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_xauth-options"></a>6.43.2. OPTIONS</h3></div></div></div><div class="variablelist"><dl class="variablelist"><dt><span class="term">
          debug
        </span></dt><dd><p>
	    Print debug information.
          </p></dd><dt><span class="term">
          xauthpath=/path/to/xauth
        </span></dt><dd><p>
            Specify the path the xauth program (it is expected in
            <code class="filename">/usr/X11R6/bin/xauth</code>,
            <code class="filename">/usr/bin/xauth</code>, or
            <code class="filename">/usr/bin/X11/xauth</code> by default).
          </p></dd><dt><span class="term">
          systemuser=UID
        </span></dt><dd><p>
            Specify the highest UID which will be assumed to belong to a
            "system" user. pam_xauth will refuse to forward credentials to
            users with UID less than or equal to this number, except for
            root and the "targetuser", if specified.
          </p></dd><dt><span class="term">
          targetuser=UID
        </span></dt><dd><p>
            Specify  a single target UID which is exempt from the
            systemuser check.
          </p></dd></dl></div></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_xauth-types"></a>6.43.3. MODULE TYPES PROVIDED</h3></div></div></div><p>
      Only the <span class="emphasis"><em>session</em></span> type is provided.
    </p></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_xauth-return_values"></a>6.43.4. RETURN VALUES</h3></div></div></div><div class="variablelist"><dl class="variablelist"><dt><span class="term">PAM_BUF_ERR</span></dt><dd><p>
             Memory buffer error.
          </p></dd><dt><span class="term">PAM_PERM_DENIED</span></dt><dd><p>
            Permission denied by import/export file.
          </p></dd><dt><span class="term">PAM_SESSION_ERR</span></dt><dd><p>
	    Cannot determine user name, UID or access users home directory.
          </p></dd><dt><span class="term">PAM_SUCCESS</span></dt><dd><p>
            Success.
          </p></dd><dt><span class="term">PAM_USER_UNKNOWN</span></dt><dd><p>
            User not known.
          </p></dd></dl></div></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_xauth-examples"></a>6.43.5. EXAMPLES</h3></div></div></div><p>
      Add the following line to <code class="filename">/etc/pam.d/su</code> to
      forward xauth keys between users when calling su:
      </p><pre class="programlisting">
session  optional  pam_xauth.so
      </pre><p>
    </p></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_xauth-author"></a>6.43.6. AUTHOR</h3></div></div></div><p>
        pam_xauth was written by Nalin Dahyabhai &lt;nalin@redhat.com&gt;,
        based on original version by
        Michael K. Johnson &lt;johnsonm@redhat.com&gt;.
      </p></div></div><div class="navfooter"><hr><table width="100%" summary="Navigation footer"><tr><td width="40%" align="left"><a accesskey="p" href="sag-pam_wheel.html">Prev</a> </td><td width="20%" align="center"><a accesskey="u" href="sag-module-reference.html">Up</a></td><td width="40%" align="right"> <a accesskey="n" href="sag-see-also.html">Next</a></td></tr><tr><td width="40%" align="left" valign="top">6.42. pam_wheel - only permit root access to members of group wheel </td><td width="20%" align="center"><a accesskey="h" href="Linux-PAM_SAG.html">Home</a></td><td width="40%" align="right" valign="top"> Chapter 7. See also</td></tr></table></div></body></html>