Password expiry related clarification in OpenSSH3.5p1

Kevin Steves stevesk at pobox.com
Mon Dec 9 05:41:28 EST 2002


fyi (i'm behind in following the passord expire efforts).

----- Forwarded message from Logu <logsnaath at gmx.net> -----

Date: Sat, 7 Dec 2002 02:42:52 +0530
From: "Logu" <logsnaath at gmx.net>
To: <stevesk at cvs.openbsd.org>
Cc: <kumaresh_ind at gmx.net>
Subject: Password expiry related clarification in OpenSSH3.5p1

Hello Stevesk,

We are using OpenSSH3.1p1 and now planned to shift to OpenSSH3.5p1. Among
other changes, we would like to know specifically the reasons for the
commented part of the PAM account expiration part in auth-pam.c.
Why this part of the code is not used in 3.5p1? Is there any specific
reasons for not using this part of the code? 

#if 0
  case PAM_NEW_AUTHTOK_REQD:
   message_cat(&__pam_msg, use_privsep ?
       NEW_AUTHTOK_MSG_PRIVSEP : NEW_AUTHTOK_MSG);
   /* flag that password change is necessary */
   password_change_required = 1;
   /* disallow other functionality for now */
   no_port_forwarding_flag |= 2;
   no_agent_forwarding_flag |= 2;
   no_x11_forwarding_flag |= 2;
   break;
#endif


Please reply.

Thanks
Logsnaath.



----- End forwarded message -----



More information about the openssh-unix-dev mailing list