3.8p1 password expiry, Solaris 8
Dmitry Berezin
dberezin at acs.rutgers.edu
Sat Mar 20 03:05:46 EST 2004
I was able to replicate this problem, but only in the same window, that I
have had opened since yesterday. After logging out of Gnome desktop and
logging back in, I can no longer produce the same results. Most likely it
was some combination of "su"s in the same session, but again, I am unable to
replicate it anymore.
"passwd", when called without any arguments, will try to change password of
the originally logged in user, so in my case when sshd called passwd, it was
somehow referring back to the account that logged into the desktop.
Although, something like that would probably be a very rare case (and
probably while testing), would it be safer to call passwd <user name>
instead?
-Dmitry.
> -----Original Message-----
> From: openssh-unix-dev-bounces+dberezin=acs.rutgers.edu at mindrot.org
> [mailto:openssh-unix-dev-bounces+dberezin=acs.rutgers.edu at mindrot.org] On
> Behalf Of Dmitry Berezin
> Sent: Thursday, March 18, 2004 8:02 PM
> To: 'Darren Tucker'
> Cc: openssh-unix-dev at mindrot.org
> Subject: RE: 3.8p1 password expiry, Solaris 8
>
> > Yep, that's bug #808. Expiry will work OK if you set UsePAM=no.
>
> UsePAM=no works fine.
>
> I have some strange problem while running sshd in debug mode, though. If I
> login to the server with Gnome 2.0 desktop as a regular user, su to root,
> and then run sshd -ddd, then when some other user with expired password
> tries to login and sshd tries to change password for that user, I get an
> error message:
>
> WARNING: Your password has expired.
> You must change your password now and login again!
> passwd: Changing password for <USER THAT LOGGED IN TO GNOME>
> Permission denied
>
> If I just ssh into the box and start sshd -ddd on some other port, the
> problem does not occur.
>
> I will do some more tests tomorrow and post more precise info about this.
> (It's late and I might be doing something wrong)
>
> -Dmitry.
>
> >
> > --
> > Darren Tucker (dtucker at zip.com.au)
> > GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
> > Good judgement comes with experience. Unfortunately, the experience
> > usually comes from bad judgement..
>
> _______________________________________________
> openssh-unix-dev mailing list
> openssh-unix-dev at mindrot.org
> http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
More information about the openssh-unix-dev
mailing list