Public key auth and PAM

From: David Hajek (david_at_hajek.net)
Date: 12/08/03 

Date: Mon, 8 Dec 2003 15:22:28 +0100

I think that PAM isn't taken into acount when public key authentication is
on. I disabled access in PAM for all users and allowed login for only thouse
which are listed via pam_list_file. But I found that all users are still
allowed to login when they're use public key.

Is it possible to tell SSH to check PAM access controls even public keys are
on?

Thanks,
David

Relevant Pages

  • Re: Public key auth and PAM
    ... I disabled access in PAM for all users and allowed login for only thouse ... >allowed to login when they're use public key. ...
    (comp.security.ssh)
  • Re: SSHD (openssh) responds too quickly for bad password.
    ... >> As far as I know, PAM is also used when you login with telnet. ... in this case PAM. ... Swatch isn't the only log monitoring tool out there. ...
    (comp.security.ssh)
  • SUMMARY: Single User Mode login to SunfireV120 with Solaris 8 fails
    ... My problem boiled down to multiuser login working fine yet in single user ... Feb 9 10:01:31 PAM: pam_set_item ... (or give root password for system maintenance): ...
    (SunManagers)
  • Reg. PAM
    ... I have installed libpam-cracklib. ... Does our new versions support PAM for packages. ... that grant access to the machine, like login and ssh. ... @include common-auth ...
    (Debian-User)
  • Re: Samba passwords
    ... > found it hard to understand and the pam man page even worse. ... It is possible to use pam_smbpass to have login, sshd, etc. authenticate ... against the SMB password database instead of /etc/passwd. ... I think you'll still need UNIX accounts to ...
    (freebsd-questions)
Quantcast