SSHD 3.7.1p2 on HP-UX

Darren Tucker dtucker at zip.com.au
Thu Oct 2 00:16:58 EST 2003


Eric Cunningham wrote:
> 
> > I would predict that login will fail again tomorrow, as it does for Jan,
> > and with your info I probably learnt why :)
> 
> You're correct.  Today, sshd is reporting in syslog that my password has
> expired and I can't login again.
> 
> Is there a way around this when password aging needs to be in effect,
> the system needs to remain Trusted and upgrading to 11.11 isn't a viable
> option (for the time being)?

Try this patch, it should get you going again.  It's not ideal and a
better solution (that won't affect platforms other than HP-UX) is needed.

-- 
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
-------------- next part --------------
Index: auth.c
===================================================================
RCS file: /usr/local/src/security/openssh/cvs/openssh_cvs/auth.c,v
retrieving revision 1.77
diff -u -p -r1.77 auth.c
--- auth.c	2 Sep 2003 21:32:46 -0000	1.77
+++ auth.c	1 Oct 2003 03:45:17 -0000
@@ -112,7 +112,7 @@ allowed_user(struct passwd * pw)
 			return 0;
 		}
 
-		if (spw->sp_max != -1 &&
+		if (spw->sp_max != -1 && spw->sp_max != 0 &&
 		    today > spw->sp_lstchg + spw->sp_max) {
 			logit("User %.100s password has expired (password aged)",
 			    pw->pw_name);


More information about the openssh-unix-dev mailing list