ssh daemon fails to call pam when user does not exist in /etc/passwd
Darren Tucker
dtucker at zip.com.au
Mon Jul 5 23:48:58 EST 2004
Damien Mascord wrote:
> Setting the sp_expire flag to -1 causes the following to happen:
>
> debug3: channel 0: close_fds r -1 w -1 e -1
> WARNING: Your password has expired.
> You must change your password now and login again!
> Changing password for <username>
> (current) UNIX password:
>
> Seems as though ssh and/or PAM now thinks that the password is now expired.
Probably sshd rather than PAM. sp_lstchg is probably zero (the value
will be in the debug trace). If you can, set it to -1 too.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list