2.9.9p2 bug in PAM support
Greg
greg at cheers.bungi.com
Sat Sep 29 11:21:18 EST 2001
On 09/28/01 01:24 PM, Brent A Nelson wrote:
> With OpenSSH 2.9.9p2 as the server, I'm not able to do scp or "ssh
> machinename command" in general to any of my Suns!
Me too.
> I tracked this down a bit; the problem occurs only when PAM support is
> enabled. However, if I remove line 430 of session.c,
> "do_pam_session(s->pw->pw_name, NULL);" inside of do_exec_no_pty, the
> problem goes away.
>
> It looks like the following entry in the Changelog may be responsible:
>
> 20010627
> - (djm) Reintroduce pam_session call for non-pty sessions.
>
> Let me know if you need any additional info to track this down.
FYI. If pam_unix is used then at least one of PAM_TTY or PAM_RHOST must
be set before calling pam_open_session or it's considered a
PAM_SESSION_ERR.
Cheers!greg
More information about the openssh-unix-dev
mailing list