[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: OpenSSH and PAM

From: Chip Christian <chip princetonecom com>
To: pam-list redhat com
Subject: Re: OpenSSH and PAM
Date: Tue, 12 Sep 2000 10:12:19 -0400

erbenson@alaska.net said:
> scp does not create an interactive session, so it should be possible
> for ssh to eschew password change enforcment for non-interactive
> sessions.

> this would allow users to avoid it by logging in by ssh host /bin/bash
> but if they are that stubborn they will find other ways to get out of
> changing their password. 

Sure, but it still ought to consume any grace logins the user has left, so 
once the password expires for good, all logins, passworded or not, should 
fail.

Follow-Ups:
- Re: OpenSSH and PAM
  - From: Michael Tokarev <mjt@tls.msk.ru>

References:
- Re: OpenSSH and PAM
  - From: Ethan Benson <erbenson@alaska.net>

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index] []