Handling of password & account expirations

Darren Moffat Darren.Moffat at eng.sun.com
Tue Jun 5 02:44:30 EST 2001

>While this no longer applies to OpenBSD now that we have moved to BSD_AUTH I
>believe this is still an issue with OpenSSH in the portable release, correct?
>We can't expect {Linux,Solaris,<foobar-os>} to have BSD_AUTH can we?

It shouldn't be an issue on those systems since OpenSSH (unlike the
SSH Communications Inc) properly calls pam_acct_mgmt() regardless of
which type of authentication was used.  On Linux and Solaris the
password aging is enforced in a PAM module so the correct thing happens on
these systems when the portable release is compiled with PAM support.

Darren J Moffat

More information about the openssh-unix-dev mailing list