HP-UX PAM with Trusted System patch

Dan Wanek dwanek at depaul.edu
Wed Jul 17 14:12:24 EST 2002 

Darren,

The patch is intended for HP-UX 11.0 and 11i.  These are the only
versions we have in production and are the only ones I've tested the
patch on.  You're right though, I don't think PAM was included until
version 11.0.

On a separate note, 11.0 doesn't like the unified diff format so I've
attached the same patch for 11.0 if anyone wants to try it.  I've had
one request already.  11i should be fine, however.

--
Dan Wanek



-----Original Message-----
From: openssh-unix-dev-admin at mindrot.org
[mailto:openssh-unix-dev-admin at mindrot.org] On Behalf Of Darren Cole
Sent: Tuesday, July 16, 2002 8:06 PM
To: Dan Wanek; openssh-unix-dev at mindrot.org
Subject: Re: HP-UX PAM with Trusted System patch

The patch looks reasonable, but I don't believe Trust HP-UX has pam or
at
least we don't have it on our machines.  I even asked around the office
and
no one thinks we have pam on 10.26.  Are we mistaken or missing a patch?
Or
are you talking about something version other than Trusted HP-UX 10.26?
Later version of HP-UX may have pam (I think 11i does), but I don't know
of
any later version of Trusted HP-UX than 10.26.

Darren Cole

----- Original Message -----
From: "Dan Wanek" <dwanek at dexter.it-ias.depaul.edu>
To: <openssh-unix-dev at mindrot.org>
Sent: Tuesday, July 16, 2002 6:25 AM
Subject: HP-UX PAM with Trusted System patch


> I'm fairly new to the list and new to submitting patches.  Can someone
> please verify the attached patch for running a HP-UX Trusted System
with
> PAM and OpenSSH 3.4p1?  The problem seemed to be that pam couldn't
verify
> the user via __pamh after the call to permanently_set_uid in
session.c.
> So I called do_pam_session prior to the call and added a function
> do_pam_set_tty in order to set the tty after allocation.
>
> --
> Dan Wanek
>
>

_______________________________________________
openssh-unix-dev at mindrot.org mailing list
http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
-------------- next part --------------
A non-text attachment was scrubbed...
Name: diff.ossh
Type: application/octet-stream
Size: 2393 bytes
Desc: not available
Url : http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20020716/8a87fa76/attachment.obj

More information about the openssh-unix-dev mailing list