PATCH: HPUX trusted system password checking

Kevin Steves stevesk at sweden.hp.com
Sat Sep 9 01:38:50 EST 2000


On Fri, 8 Sep 2000, Dirk De Wachter wrote:
: The HPUX 10.20 trusted system hack doesn't work yet as intended.
: I have adapted the auth-passwd.c file to make it work.
: 
: Please find a context diff file attached to this file. This diff is 
: against the latest OpenSSH 2.2.0p1 released Sept 2, 2000.

Using the getprpwent() interface may be a good direction, since
getspent() is deprecated, but from a look at the code, why didn't it
execute the code that uses getspnam()?  Is HAVE_SHADOW_H defined and
DISABLE_SHADOW undefined in config.h?  Also, does PAM work with OpenSSH
on 10.20?  PAM is on 10.20, but was only used by CDE.  If PAM is
sufficiently supported on 10.20, I wouldn't mind getting rid of the
HPUX_TRUSTED stuff and only supporting PAM on 10.20 and 11.0.  
Otherwise, I'd like to clean things up including always linking with
-lsec and using iscomsec(2) to differentiate between trusted/not trusted
at runtime.

: Also on HPUX 10.20, xauth is not found at the standard location. 
: Perhaps this standard location could be changed automagically to 
: /usr/bin/X11/auth once HPUX is detected.

It's detected on 11.0 and it's the same path so I don't immediately see
what's happening.






More information about the openssh-unix-dev mailing list