[PATCH] Password expiry with Privsep and PAM
Martin MOKREJŠ
mmokrejs at natur.cuni.cz
Wed Dec 11 00:35:30 EST 2002
On Tue, 10 Dec 2002, Darren Tucker wrote:
Hi Darren,
> Hi All.
> Attached is a patch that implements password expiry with PAM and
> privsep. It works by passing a descriptor to the tty to the monitor,
> which sets up a child with that tty as stdin/stdout/stderr, then runs
> chauthtok(). No setuid helpers.
>
> I used some parts of Michael Steffens' patch (bugid #423) to make it
> work on HP-UX.
>
> It's still rough but it works. Tested on Solaris 8 and HPUX 11 (trusted
> configuration).
Is this patch compatible with thsi patch from Jan Iven?
http://msgs.securepoint.com/cgi-bin/get/openssh-unix-dev-0210/42.html
Has that patch been fully integradted into cvs already? I guess PrivSep
should already work if his patch is in place already... ;)
--
Martin Mokrejs <mmokrejs at natur.cuni.cz>, <m.mokrejs at gsf.de>
PGP5.0i key is at http://www.natur.cuni.cz/~mmokrejs
MIPS / Institute for Bioinformatics <http://mips.gsf.de>
GSF - National Research Center for Environment and Health
Ingolstaedter Landstrasse 1, D-85764 Neuherberg, Germany
tel.: +49-89-3187 3683 , fax: +49-89-3187 3585
More information about the openssh-unix-dev
mailing list