PAM & several passwords

[Stefan Neis]

J.S.Peatfield at damtp.cam.ac.uk wrote:
> 
> Surely this would be handled by the pam code already
> wouldn't it?  Assuming that there are several modules
> all required and they each can ask the user  for some
> auth token...  (not that I've actually tried it of course).

The point is that PAM is relying on the application's
"conversation function" to obtain passwords/auth tokens.
And sshd's conversation function just fills the one and only
password I entered into the reply slot and returns without
giving me any chance to do something different...