SSHD 3.7.1p2 on HP-UX

Eric Cunningham ecunningham at whoi.edu
Thu Oct 2 05:12:10 EST 2003


I tried the auth.c patch provided with the following results:

  - without 
http://bugzilla.mindrot.org/attachment.cgi?id=386&action=view applied, 
I'm back to getting "password has expired (password aged)" msgs from sshd.

  - with http://bugzilla.mindrot.org/attachment.cgi?id=386&action=view 
applied, I'm back to getting "account is locked" msgs from sshd. I tried 
resetting my password but still get "account is locked" msgs from sshd.

		-Eric


> Try this patch, it should get you going again.  It's not ideal and a
> better solution (that won't affect platforms other than HP-UX) is needed.
> 
> 
> 
> ------------------------------------------------------------------------
> 
> Index: auth.c
> ===================================================================
> RCS file: /usr/local/src/security/openssh/cvs/openssh_cvs/auth.c,v
> retrieving revision 1.77
> diff -u -p -r1.77 auth.c
> --- auth.c	2 Sep 2003 21:32:46 -0000	1.77
> +++ auth.c	1 Oct 2003 03:45:17 -0000
> @@ -112,7 +112,7 @@ allowed_user(struct passwd * pw)
>  			return 0;
>  		}
>  
> -		if (spw->sp_max != -1 &&
> +		if (spw->sp_max != -1 && spw->sp_max != 0 &&
>  		    today > spw->sp_lstchg + spw->sp_max) {
>  			logit("User %.100s password has expired (password aged)",
>  			    pw->pw_name);






More information about the openssh-unix-dev mailing list