Expired password handling in openssh-2.5.1p1/2

Lewandowsky, Matt mattl at livecapital.com
Thu Mar 29 04:33:25 EST 2001


Another platform I'd like to see this for is Solaris... Enough people run it
and have expiring passwords that it is probably worth it. Of course, once we
see the IRIX code, it wouldn't be that hard to port it to Solaris. (At least
from what I can tell...)

--Matt

> -----Original Message-----
> From: Kevin Steves [mailto:stevesk at sweden.hp.com]
> Sent: Wednesday, March 28, 2001 1:03 AM
> To: Kevin Taylor
> Cc: openssh
> Subject: Re: Expired password handling in openssh-2.5.1p1/2
> 
> 
> On Tue, 27 Mar 2001, Kevin Taylor wrote:
> : > : Right now the program closes the connection....the 
> commercial ssh
> : > : manages to exec /bin/passwd after they enter their 
> current password.
> : >
> : > there is only support thru PAM right now.  i had started a
> : > multi-platform password interface last year, and while it 
> was close to
> : > the point of being integrated, i have been side-tracked 
> with stuff that
> : > was more interesting to work on.  adding just code to run 
> passwd if the
> : > password has expired isn't hard, and maybe we should do that.
> :
> :
> : Has any of this ended up in the current openssh portable code?
> 
> no, what platform are you using?  i should have said adding 
> code to run
> passwd for one platform isn't hard.  you have getspent(), 
> getprpwent(),
> BSD pw_change, some with password aging data in the password 
> field, and
> getpwaent() systems, and probably more.  i'll think about it 
> some more.
> 



More information about the openssh-unix-dev mailing list