Expired password handling in openssh-2.5.1p1/2

Kevin Taylor ktaylor at eosdata.gsfc.nasa.gov
Fri Mar 2 04:25:22 EST 2001


Dan Kaminsky wrote:
> 
> > Are there plans, or does someone have a fix, for having openssh force
> > users to change passwords when they're expired?
> >
> > Right now the program closes the connection....the commercial ssh
> > manages to exec /bin/passwd after they enter their current password.
> >
> > Any ideas?
> 
> Hmm, does PAM send back a special message when the password needs to be
> changed?
> 
> I could envision changing the user shell to /bin/passwd if PAM complains...
> 
> --Dan

Sorry, I didn't give any other useful info.

This is not using PAM, on IRIX and on Solaris systems.


-- 
---------------------------------------------------------.
Kevin Taylor                                              \
Systems Administrator - DAAC, Code 902, Bldg 32, Rm N126A /
Science Systems and Applications, Inc.                    \
Goddard Space Flight Center                               /
Greenbelt, MD 20771                                       \
                                                          /
Phone:  (301) 614-5505                                    \
e-mail: ktaylor at daac.gsfc.nasa.gov                        /
----------------------------------------------------------'





More information about the openssh-unix-dev mailing list