Re: password expires on solaris

• Previous message: all mail refused: "Re: ssh through a firewall"
• In reply to: Christopher Denney: "Re: password expires on solaris"
• Next in thread: Darren Tucker: "Re: password expires on solaris"
• Reply: Darren Tucker: "Re: password expires on solaris"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 12 Jun 2003 15:30:54 -0600

Christopher Denney <chris@DO.pagan.NOT.net.SPAM> wrote in
news:Xns93987A920C78Fchrispagannet@206.124.0.13:

> dtucker@dodgy.net.au (Darren Tucker) wrote in
> news:bc7383$hs2$1@gate.dodgy.net.au:
>
>> In article <Xns9396AD86BD3A8chrispagannet@206.124.0.13>,
>> Christopher Denney <chris@DO.pagan.NOT.net.SPAM> wrote:
>>>When a user's password expires on a Solaris 8 system running
>>>openssh-3.6p1 they cannot log in (I pre-expire all new users, this
>>>sucks a lot) except with telnet. I started out with "./configure
>>>--with-pam"
>>
>> See:
>> http://bugzilla.mindrot.org/show_bug.cgi?id=14
>> http://bugzilla.mindrot.org/show_bug.cgi?id=423
>> http://www.zip.com.au/~dtucker/openssh/
>>
>> It's not all that obvious but the patch (passexpire20) found at the
>> last link will work for Solaris 8+PAM.
>>
>> [snip]
>>>fatal: monitor_read: unsupported request: 24
>>> failed login from expired user ^^^^
>>>I am also concerned by the difference in messages.
>>
>> That's actually a bug in the PrivSep+PAM support. The current devel
>> versions of OpenSSH has had a complete PAM overhaul.
>>
>
> Thanks, I had looked at those cursorily and didn't see it.
>

Correct me if I'm wrong, but the patch appears to be for OpenSSH_3.6.1p2
The latest version I see on the mirrors is OpenSSH_3.6.1p1
and ssh doesn't compile if I try.

-- 
    -- Cd --                    Christopher Denney
-- 
"When I use a word," Humpty Dumpty said, in a rather scornful tone, "it 
means just what I choose it to mean -neither more nor less." -Lewis 
Carroll

• Previous message: all mail refused: "Re: ssh through a firewall"
• In reply to: Christopher Denney: "Re: password expires on solaris"
• Next in thread: Darren Tucker: "Re: password expires on solaris"
• Reply: Darren Tucker: "Re: password expires on solaris"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages openssh3.5p1: new functionality added, modifications done ... This is NOT an official or unofficial openssh announcement, patch, release ... secure ftp services for our web content developers. ... there is no server-side control over umask and file permissions. ... I'm running openssh with my patch on my servers, and am quite happy with it. ... (SSH) SUMMARY: Trouble last after SSH + LDAP ... As it turned out this is an issue with OpenSSH 4.3p1. ... Did a make distclean, applied the patch, and rebuilt with no problems. ... authentication against an OpenLDAP server. ... PAM LDAP module 1.80 ... (SunManagers) [UNIX] OpenSSH IP Restriction Bypass (adv.option, Patch Available) ... OpenSSH IP Restriction Bypass ... Apply the following patch. ... The information in this bulletin is provided "AS IS" without warranty of any kind. ... In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages. ... (Securiteam) Re: sshd, sftp & umask settings (ssh.com 2.4.0) ... This is a problem with openssh as well. ... I just posted this patch a few minutes ago. ... > I found that ssh.com's sshd has a configuration option to use the umask ... > setting in the .cshrc file by setting the following in ... (comp.security.ssh) Re: AIX patch works for Openssh but not Putty ... >>I have applied a patch to openssh to get it working with AIX password ... If I ssh to the daemon using openssh ssh it works fine. ... > As far as I know PuTTY does not handle PASSWD_CHANGEREQ. ... (comp.security.ssh)