Expired password handling in openssh-2.5.1p1/2
Damien Miller
djm at mindrot.org
Fri Mar 2 19:30:09 EST 2001
On Thu, 1 Mar 2001, Dan Kaminsky wrote:
> > Are there plans, or does someone have a fix, for having openssh force
> > users to change passwords when they're expired?
> >
> > Right now the program closes the connection....the commercial ssh
> > manages to exec /bin/passwd after they enter their current password.
> >
> > Any ideas?
>
> Hmm, does PAM send back a special message when the password needs to
> be changed?
>
> I could envision changing the user shell to /bin/passwd if PAM
> complains...
It works for PAM now, but not for non-PAM.
-d
--
| Damien Miller <djm at mindrot.org> \ ``E-mail attachments are the poor man's
| http://www.mindrot.org / distributed filesystem'' - Dan Geer
More information about the openssh-unix-dev
mailing list