[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: telnet vs. sshd pam.d files

From: "Michael A. Dietz" <mad099 dietznet net>
To: pam-list redhat com
Subject: Re: telnet vs. sshd pam.d files
Date: Sun, 10 Sep 2000 20:09:11 -0500 (CDT)

On Sun, 10 Sep 2000, Paul Nicholas Faure wrote:

> > telnet just spawns /bin/login so it uses /etc/pam.d/login
> > 
> > ssh is just broken in regards to handling expiration correctly
> > (OpenSSH 1.2.3 will just deny access when a password is expired, when
> > it should force the user to change it)
> > 
> > annoying.  (i don't know how to fix it unforunatly)
> 
> I have openssh-2.1.1p4-1, and it allows access if the pssword expired, but
> give a nice little warning "Your password has expired, please change it.".
> 
> Does regular SSH have this same problem ?

I'm using OpenSSH 2.2.0p1 and it forces password changes when they expire,
I had to use chage to set the password expiration first though and set a
password Inactive date, without the password inactive date it only warned
me.

> 
> 

----------------
Running on Linux 2.4
Michael A. Dietz
mad099@dietznet.net

References:
- Re: telnet vs. sshd pam.d files
  - From: Paul Nicholas Faure <paul@engsoc.org>

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index] []