Password aging problem

Perez,Robert Robert.Perez at cna.com
Sat Jun 5 06:07:50 EST 2004


Compile openssh-3.8p1 with gcc and the following flags
--prefix=/tmp/build/sshd --with-ssl-dir=/tmp/build/lib --with-utmpx, no
PAM.

Everything complies correctly, and I changed sshd_config to use
"UseLogin yes"

When my client connects (using the newer ssh client too), I do not get
the message that my password will expire in xx days, but sshd shows that
it is picking up that info (next three lines)

debug1: sys_auth_passwd: msg Last unsuccessful login: Thu May 13
15:11:10 2004 on ssh from mxpgh0.cna.com
Last login: Fri Jun  4 19:31:33 2004 on /dev/pts/13 from loopback
debug3: AIX/passwdexpired returned 0 msg Your password will expire: Thu
Aug  5 21:53:44 2004

The client just shows

c020914 at localhost's password:
*****************************************************
! ! ! ! ! WARNING ! ! ! ! !
Unauthorized access and use of this system is
not permitted and is strictly prohibited by
security policies, regulations, local and
national laws.
UNAUTHORIZED USERS ARE SUBJECT TO CRIMINAL AND
CIVIL PENALTIES AS WELL AS COMPANY-INITIATED
DISCIPLINARY PROCEEDINGS.
*****************************************************
Last unsuccessful login: Thu May 13 10:11:10 CDT 2004 on ssh from
mxpgh0.cna.com
Last login: Fri Jun  4 14:35:02 CDT 2004 on ssh from loopback

$

Do I need PAM compiled and enabled in the config file for passwd aging
support?

thanks




E-MAIL CONFIDENTIALITY NOTICE:  The contents of this e-mail message and any attachments are intended solely for the
addressee(s) and may contain confidential and/or legally privileged information. If you are not the
intended recipient of this message or if this message has been addressed to you in error, please
immediately alert the sender by reply e-mail and then delete this message and any attachments. If you
are not the intended recipient, you are notified that any use, dissemination, distribution, copying, or
storage of this message or any attachment is strictly prohibited.




More information about the openssh-unix-dev mailing list