[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Old Authtok when changing passwords

From: Thorsten Kukuk <kukuk suse de>
To: pam-list redhat com
Subject: Old Authtok when changing passwords
Date: Mon, 15 Apr 2002 14:09:45 +0200

Hi,

If you use shadow passwords and your password expires, login will ask
you to change the password to a new one. This is no problem, if the
password is stored local in /etc/shadow and the old password is
not necessary.

But if the password and the shadow information is stored in a remote
service, where you need the old password to change it, you have lost.

Is there really no way to get the AUTHTOK used in 
pam_sm_authenticate() from pam_sm_chauthtok()? Do I really have to
ask the user a second time for his password?

  Thorsten
-- 
Thorsten Kukuk       http://www.suse.de/~kukuk/        kukuk@suse.de
SuSE Linux AG        Deutschherrenstr. 15-19       D-90429 Nuernberg
--------------------------------------------------------------------    
Key fingerprint = A368 676B 5E1B 3E46 CFCE  2D97 F8FD 4E23 56C6 FB4B

Follow-Ups:
- Re: Old Authtok when changing passwords
  - From: Nicolas Williams <Nicolas.Williams@ubsw.com>
- Re: Old Authtok when changing passwords
  - From: Steve Langasek <vorlon@netexpress.net>

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index] []