Add pam-config for pam_mkhomedir.so

Default needs to be set to 'no' here, since this is part of the base package and will always be on the system but we don't want it to be pulled in automatically for all users.

(Haven't reviewed the logic here aside from that)

Modified the pam-config a bit. Added 'Session-Interactive-Only: yes' so that non-interactive connections (like connections to samba shares) don't create home directories.

Should priority be lowered to 160? That way, it's smack in the middle of winbind and libpam-mount.

this bug depends on https://bugs.launchpad.net/ubuntu/+source/pam/+bug/1192719

This bug was fixed in the package pam - 1.1.8-3ubuntu1

---------------
pam (1.1.8-3ubuntu1) utopic; urgency=medium

  [ Stéphane Graber ]
  * Merge from Debian unstable, remaining changes:
    - debian/libpam-modules.postinst: Add PATH to /etc/environment if it's
      not present there or in /etc/security/pam_env.conf. (should send to
      Debian).
    - debian/libpam0g.postinst: only ask questions during update-manager when
      there are non-default services running.
    - debian/libpam0g.postinst: check if gdm is actually running before
      trying to reload it.
    - debian/libpam0g.postinst: the init script for 'samba' is now named
      'smbd' in Ubuntu, so fix the restart handling.
    - Change Vcs-Bzr to point at the Ubuntu branch.
    - debian/patches-applied/series: Ubuntu patches are as below ...
    - debian/patches-applied/ubuntu-rlimit_nice_correction: Explicitly
      initialise RLIMIT_NICE rather than relying on the kernel limits.
    - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch:
      Deprecate pam_unix's explicit "usergroups" option and instead read it
      from /etc/login.def's "USERGROUP_ENAB" option if umask is only defined
      there. This restores compatibility with the pre-PAM behaviour of login.
    - debian/patches-applied/pam_motd-legal-notice: display the contents of
      /etc/legal once, then set a flag in the user's homedir to prevent
      showing it again.
    - debian/update-motd.5, debian/libpam-modules.manpages: add a manpage
      for update-motd, with some best practices and notes of explanation.
    - debian/patches/update-motd-manpage-ref: add a reference in pam_motd(8)
      to update-motd(5)
    - debian/local/common-session{,-noninteractive}: Enable pam_umask by
      default, now that the umask setting is gone from /etc/profile.
    - debian/local/pam-auth-update: Add the new md5sums for pam_umask addition.
    - Build-depend on libfl-dev in addition to flex, for cross-building
      support.
    - Add /usr/local/games to PATH.
    - Adjust debian/patches-applied/update-motd to write to
      /run/motd.dynamic, as sysvinit/ssh/login in Debian have been changed
      to use this file and no longer links /etc/motd to /var/run/motd.
    - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch:
      include patch to autogenerated manpage file
    - debian/patches-applied/pam-loginuid-in-containers: pam_loginuid:
      Update patch with follow-up changes to loginuid.c

  [ Timo Aaltonen ]
  * pam-configs/mkhomedir: Added a config for pam_mkhomedir, disabled
    by default. (LP: #557013)

pam (1.1.8-3) unstable; urgency=low

  * debian/rules: On hurd, link libpam explicitly with -lpthread since glibc
    will not dynamically switch between the libc stubs and the libpthread
    implementations on this architecture. Thanks to Samuel Thibault for the
    patch. Closes: #743891.

pam (1.1.8-2) unstable; urgency=medium

  * Mark the libaudit-dev build-dependency linux-any, since it's not
    available on non-Linux archs. Closes: #737035.
 -- Stephane Graber <email address hidden> Fri, 02 May 2014 14:59:10 -0400