On Sun, 4 Mar 2001, Nicolas Williams wrote: > On Sun, Mar 04, 2001 at 01:45:59PM -0600, Steve Langasek wrote: > > On Sat, 3 Mar 2001, Andrew Morgan wrote: > > > Yes, this is a known problem. (I recently [months ago] submitted a patch > > > to openssh to cover this issue - someone 'fixed' the original PAM code > > > to stop working like the Linux library and start working like the > > > Solaris one - I explained the difference then, and Damien added some > > > conditional compilation to cover it.) > > Interesting. So does OpenBSD itself use the Linux-PAM interpretation (if they > > even use PAM in the distro)? It appears that FreeBSD follows Solaris' > > interpretation. > I though FreeBSD was using Linux-PAM code, or code derive therefrom. You may be right, I haven't looked too closely. I had been assuming that if the FreeBSD patches didn't address this, the module must work correctly under FreeBSD as it does under Solaris, but you're right that they could have simply not tested the password expiry functionality, or been unable to diagnose the bug. Steve Langasek postmodern programmer
