It looks like pam session support for non_tty based logins got dropped in what looks like a code cleanup in session.c between 2.5p? and 2.9.p1. Is there any reason not to apply this (entirly untested) patch? Andrew Bartlett -- Andrew Bartlett abartlet at pcug.org.au -------------- next part -------------- --- openssh-2.9p1/session.c.old Sun May 6 22:26:54 2001 +++ openssh-2.9p1/session.c Sun May 6 22:27:53 2001 @@ -496,6 +496,7 @@ session_proctitle(s); #if defined(USE_PAM) + do_pam_session(s->pw->pw_name, NULL); do_pam_setcred(1); #endif /* USE_PAM */