Re: Expired Password using Pam and openssh

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Fri, 06 Feb 2004, Darryl Cook wrote:

> Hi Jan,
> 
> Thanks for the reply......I changed all of the pam_pwdb to pam_unix and 
> get the same exact conditions.  Maybe you could share your pam./sshd 
> file and let me see what differences you have....also are you running 
> redhat 9 and same versions of ssh and ssl?

The same openssh, rest is irrelevant.

/etc/pam.d/sshd:
auth            required        /lib/security/pam_unix.so
auth            required        /lib/security/pam_nologin.so
account         required        /lib/security/pam_access.so
account         required        /lib/security/pam_unix.so
password        required        /lib/security/pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3
password        required        /lib/security/pam_unix.so md5 shadow use_authtok
session         required        /lib/security/pam_unix.so

One question, do you have "UsePAM yes" in sshd_config? It's off by default.

Jan
-- 
Jan Rękorajski            |  ALL SUSPECTS ARE GUILTY. PERIOD!
baggins<at>mimuw.edu.pl   |  OTHERWISE THEY WOULDN'T BE SUSPECTS, WOULD THEY?
BOFH, MANIAC              |                   -- TROOPS by Kevin Rubio


_______________________________________________

Pam-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/pam-list

[Index of Archives]     [Fedora Users]     [Kernel]     [Red Hat Install]     [Linux for the blind]     [Gimp]

  Powered by Linux