RE: PAM based authentication?
From: Ben Lindstrom (mouring_at_etoh.eviladmin.org)
Date: Wed, 18 Jun 2003 14:11:41 -0500 (CDT) To: Anurag Bhatia <Anuragb@ami.com>
If you don't have the source code.. you can't enable/disable PAM. That is
just the facts of life.
On Wed, 18 Jun 2003, Anurag Bhatia wrote:
> Hello Ben,
> Thanks for ur help. I tried configuring sshd with --with-pam option and it
> worked. Im now able to use PAM and MD5 based password support with ssh
> What if I don't have access to the source code to reconfigure?
> What if I just want to use oone of many configuration files in ssh to enable
> PAM for password authentication? Is there a way to do it?
> -----Original Message-----
> From: Ben Lindstrom [mailto:email@example.com]
> Sent: Tuesday, June 17, 2003 9:14 PM
> To: Anurag Bhatia
> Cc: firstname.lastname@example.org
> Subject: Re: PAM based authentication?
> You need to ./configure --with-pam we disabled auto-enable because PAM
> standard is too scattered and actually caused more headache for support.
> - Ben
> On Tue, 17 Jun 2003, Anurag Bhatia wrote:
> > Hi all,
> > I'm using OpenSSH_3.6.1p2. While configuring sshd, I found the result for
> > PAM support as NO. Doesn't sshd use PAM by default????
> > I want to use MD5 based passwords with PAM support.
> > 1. So, first to enable MD5 based password support...
> > I configured sshd with --with-md5-passwords. sshd accepts MD5
> > passwords after it's configured with -with-md5-passwords. But it
> > doesn't accept password if shadow file is used on the server. How do
> > I make it accept MD5 based passwords even when shadow is used?
> > 2. How do I enable PAM based authentication? I tried enabling
> > "PAMAuthenticaionViaKbdInt yes" in sshd_config but didn't see any
> > in debug output when connecting sshd. I still see that it's using next
> > authenticaion method as "password" which allows user to login.
> > Thanks in advance,
> > Anurag