[Bug 926] pam_session_close called as user or not at all

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Mon May 22 19:03:01 EST 2006


------- Comment #10 from dtucker at zip.com.au  2006-05-22 19:03 -------
Created an attachment (id=1143)
 --> (http://bugzilla.mindrot.org/attachment.cgi?id=1143&action=view)
Call pam_session_open and pam_session_close in monitor when privsep=yes

With the above details in mind, I think this patch or similar is about
as close as we can get.  I suspect this may break pam_chroot when
privsep=yes, though (since the monitor will also be chrooted).

I would like to think that we can rationalize the PAM calls in
session.c, but touching them usually results in problems, so it would
need to be done very carefully.

------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the openssh-bugs mailing list