[Bug 568] Kerberos password auth/expiry kbdint patch

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Wed Apr 7 00:44:29 EST 2004


http://bugzilla.mindrot.org/show_bug.cgi?id=568





------- Additional Comments From michael.houle at atcoitek.com  2004-04-07 00:44 -------
Clarification:

What's happening for pub/priv login is that the 'account' module of pam_krb5 is
trying to check if the password is expired on pub/priv login. This blocks any
automated ssh/scp scripts we have in place. 

The 'account' section needs to ask for the password because it never got it in
the 'auth' section. 
The reason is that the 'auth' code was never used in PAM because pub/priv login
is being used, therefore our pam_krb5 is asking for the password in the
'account' section so it can check if it's expired. 





------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.




More information about the openssh-bugs mailing list