[PATCH] Password expiry with Privsep and PAM
Kevin Steves
stevesk at pobox.com
Thu Jan 2 11:04:53 EST 2003
On Tue, Dec 10, 2002 at 11:51:16PM +1100, Darren Tucker wrote:
> I used some parts of Michael Steffens' patch (bugid #423) to make it
> work on HP-UX.
>
> +/* HP-UX doesn't like credentials to be deleted. Skip and rely on pam_end() */
> +#ifndef __hpux
> if (__pamh && creds_set) {
> pam_retval = pam_setcred(__pamh, PAM_DELETE_CRED);
> if (pam_retval != PAM_SUCCESS)
> debug("Cannot delete credentials[%d]: %.200s",
> pam_retval, PAM_STRERROR(__pamh, pam_retval));
> }
> +#endif
this is a long-standing and for the most part non-issue that also
effects certain Solaris PAM versions (HP PAM started with a Sun
codebase). a search of the archives will show a lot of discussion.
however, we don't need to #ifndef __hpux, as that's just a debug, and
it shouldn't make anything not work.
More information about the openssh-unix-dev
mailing list