[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: SSH and expired passwords

From: Ken Snider <ken snider datawire net>
To: "Discussion of Red Hat Enterprise Linux 3 (Taroon)" <taroon-list redhat com>
Subject: Re: SSH and expired passwords
Date: Wed, 06 Apr 2005 15:23:32 -0400

Jurvis LaSalle wrote:
> A users password expired while on vacation.  When trying to ssh into the
> server (running RHEL3-U4), he was greeted with this message:
> 
> You are required to change your password immediately (password aged)
> Your password has expired, the session cannot proceed.
> Connection to server.bard.edu closed.
> 
> What do I need to enable in sshd_config so that he's prompted to change
> the expired password rather than just kicking him.  I'd like to keep
> X11Forwarding and UsePrivilegeSeparation enabled if I can.

You have to disable Privilege Separation, so that the sshd can maintain root
privileges (and access to /etc/shadow).

-- 
Ken Snider

Follow-Ups:
- Re: SSH and expired passwords
  - From: Chris Kloiber

References:
- SSH and expired passwords
  - From: Jurvis LaSalle

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]