This project is not covered by Drupal’s security advisory policy.

The PAM Auth module is based vaguely on a skeleton of the IMAP Auth module ( It accomplishes the same goal except that it uses the PHP5-PAM module to accomplish the authentication. It also borrows some ideas from the ldap_integration ( module for password-form adjustments.

Ultimately, this relies heavily on the PHP PAM module available (for Debian at least) at The security implications of granting your web server user permission to authenticate against shadow users (typical local user setup on Linux) is up to you to determine, but you'll need to make sure that Apache can use the PAM auth function before this module will work.

Project information