Re: FW: OpenSSH 3.7.1p1 & PAM authentication on Solaris 8
From: Darren Tucker (dtucker_at_zip.com.au)
Date: 01/20/04
- Previous message: Robert Khachikyan: "[Fwd: Re: disconnecting when idle problem]"
- In reply to: Aaron Sheard: "FW: OpenSSH 3.7.1p1 & PAM authentication on Solaris 8"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 20 Jan 2004 11:58:35 +1100 To: Aaron Sheard <asheard@axia.com>
Aaron Sheard wrote:
> I am having a problem with the latest version of openssh 3.7... 3.6
> and below seem to work fine on solaris 8 with pam. When i compile
> 3.7.1p1 or 3.7.1p2 with the --with-pam configure option, it seems to
> skip the authentication module, however it seems to read the session
> and account sections. It doenst seem to care if the authentication
> lines are in there at all. What changes were made between 3.6 and 3.7?
> Should i be using some other configure options?
From the 3.7p1 release notes:
"Replace PAM password authentication kludge with a more correct PAM
challenge-response module from FreeBSD."
You probably want these in your sshd_config:
UsePAM yes
ChallengeResponseAuthentication yes
PasswordAuthentication no
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
- Previous message: Robert Khachikyan: "[Fwd: Re: disconnecting when idle problem]"
- In reply to: Aaron Sheard: "FW: OpenSSH 3.7.1p1 & PAM authentication on Solaris 8"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
