3.7.1p1 appears to break pam session.
Ralf Hack (new ext. 1216)
ralf.hack at gxn.net
Tue Sep 23 19:10:05 EST 2003
Hi,
I am running FreeBSD 4.7 and openssh 3.7.1p1. I have enabled
PAM usage and indeed, I can use PAM for authentication purposes.
Since configure does login_cap.h, the preprocessor is side stepping
do_pam_session()
altogether in session.c:do_setusercontext().
Here is my patch for session.c. My understanding about
portability issues is rather limited. I would very much appreciate if
you guys could check this and verify that I am not introducing more
problems with this. So far this works for me.
--- session.c Tue Sep 23 10:14:47 2003
+++ session.c.orig Tue Sep 23 10:04:02 2003
@@ -1240,15 +1240,6 @@
# ifdef __bsdi__
setpgid(0, 0);
# endif
-# ifdef USE_PAM
- /*
- * PAM session wants to be run for LOGIN_CAP systems too!
- */
- if (options.use_pam) {
- do_pam_session();
- do_pam_setcred(0);
- }
-# endif /* USE_PAM */
if (setusercontext(lc, pw, pw->pw_uid,
(LOGIN_SETALL & ~LOGIN_SETPATH)) < 0) {
perror("unable to set user context");
More information about the openssh-unix-dev
mailing list