locked account accessable via pubkey auth
Albert Chin
openssh-unix-dev at thewrittenword.com
Wed Jan 30 15:23:44 EST 2002
On Tue, Jan 29, 2002 at 01:49:10PM -0800, Frank Cusack wrote:
> On Tue, Jan 29, 2002 at 08:48:51AM -0600, Albert Chin wrote:
> > On Tue, Jan 29, 2002 at 12:56:55PM +0100, Dost, Alexander wrote:
> > > maybe this is a silly question ;-) But why is it possible to login on a
> > > machine with a locked account (passwd -l ) via pubkey-authentication
> > > (authorized_keys) ?
> > > I use OpenSSH3.01p1on Solaris8 with PAM support so I thought this should not
> > > happen.
> >
> > Check the list archives and you'll find others with the same problem.
> > Noone has turned up a solution with Solaris 8/PAM yet.
>
> huh.. This is definitely a bug; probably in the Solaris PAM libs. I can
> look into this, unfortunately not within a day or so.
Any help would be *greatly* appreciated. Some references in the
mailing list that might help:
http://marc.theaimsgroup.com/?t=100636351300012&r=1&w=2
http://bugzilla.mindrot.org/show_bug.cgi?id=14
http://marc.theaimsgroup.com/?t=100528526900004&r=1&w=2
--
albert chin (china at thewrittenword.com)
More information about the openssh-unix-dev
mailing list