[PATCH] Password expiry with Privsep and PAM

Peter Stuge stuge-openssh-unix-dev at cdy.org
Wed Dec 11 19:45:33 EST 2002


On Wed, Dec 11, 2002 at 04:00:53PM +1100, Darren Tucker wrote:
> > And if anything fails along the way, touch luck, the SSH protocol has no
> > way to propagate messages such as "Password must contain..." back to the
> > client.
> 
> Sure it does. The "prompt" string.

Doh, missed that one even while it was right under my nose.  Well, either
just send back whatever unexpected data that aborted the chat, or if it
turns out neccessary have a subchat, or a mark for where the suitable
return message starts.


> > I will try to prove you wrong.  :)
> 
> I'll count the expect string library toward the size :-)

Ok, but I still believe it wont go near 10 KB, especially with some sort of
compression.


> Have fun and good luck.

Thanks!


//Peter



More information about the openssh-unix-dev mailing list