diff -ruN schroot-1.1.4/bin/schroot/pam/schroot schroot-1.1.4-centos/bin/schroot/pam/schroot
--- schroot-1.1.4/bin/schroot/pam/schroot	2005-06-21 13:33:20.000000000 +0200
+++ schroot-1.1.4-centos/bin/schroot/pam/schroot	2007-06-21 16:10:55.000000000 +0200
@@ -17,19 +17,10 @@
 # auth       required   pam_wheel.so deny group=noschroot
 
 # This allows root to use schroot without passwords (normal operation)
-auth       sufficient pam_rootok.so
+auth       required     pam_nologin.so
+auth       sufficient   pam_rootok.so
+auth       required     pam_stack.so service=system-auth
+account    required     pam_stack.so service=system-auth
+session    required     pam_stack.so service=system-auth
+password   required     pam_stack.so service=system-auth
 
-# Uncomment and edit /etc/security/time.conf if you need to set
-# time restrainst on schroot usage.
-# account    requisite  pam_time.so
-
-# The standard Unix authentication modules, used with
-# NIS (man nsswitch) as well as normal /etc/passwd and
-# /etc/shadow entries.
-@include common-auth
-@include common-account
-@include common-session
-
-# Sets up user limits, please uncomment and read /etc/security/limits.conf
-# to enable this functionality.
-# session    required   pam_limits.so