Michael Richters <[EMAIL PROTECTED]> writes:
> In fact, the same thing happens if I'm using pam_krb5 to log in, but
> I've just run `passwd -e `. Therefore, I'm pretty sure
> pam_unix has nothing to do with it.
Ah, okay. Then yeah, it's a case where the system has enough information
to do the r
On Wed, Feb 21, 2007 at 10:28:48AM -0800, Russ Allbery wrote:
> Michael Richters <[EMAIL PROTECTED]> writes:
> > On Tue, Feb 20, 2007 at 10:24:55PM -0800, Russ Allbery wrote:
>
> >> You have to enable ChallengeResponseAuthentication in sshd_config for
> >> sshd to do a full PAM dialog. Otherwise,
Michael Richters <[EMAIL PROTECTED]> writes:
> On Tue, Feb 20, 2007 at 10:24:55PM -0800, Russ Allbery wrote:
>> You have to enable ChallengeResponseAuthentication in sshd_config for
>> sshd to do a full PAM dialog. Otherwise, it fakes the PAM dialog
>> enough to provide a password and if the PAM
On Tue, Feb 20, 2007 at 10:24:55PM -0800, Russ Allbery wrote:
> You have to enable ChallengeResponseAuthentication in sshd_config for sshd
> to do a full PAM dialog. Otherwise, it fakes the PAM dialog enough to
> provide a password and if the PAM module has to prompt for any more data
> than that,
merlin <[EMAIL PROTECTED]> writes:
> Package: libpam-krb5
> Version: 2.6-1
> Severity: normal
> I have a host that uses kerberos for user authentication, and which is
> only accessible remotely (i.e. ssh). When I expire a user's kerberos
> password (kadmin -q "modprinc +needchange "), I can log
Package: libpam-krb5
Version: 2.6-1
Severity: normal
I have a host that uses kerberos for user authentication, and which is
only accessible remotely (i.e. ssh). When I expire a user's kerberos
password (kadmin -q "modprinc +needchange "), I can log in on
the console with the old password, and cha
6 matches
Mail list logo
