openssh unix dev - Nov 2001 - openssh password expiration problem

openssh password expiration problemPatrick,

Indeed password aging does not work with OpenSSH 3.0.1p1 on Solaris 2.6.
>From what I can tell something is different with Solaris 2.6 and Solaris
2.8. I know that password expiration doesn't cause a problem on Solaris8.
I'm unclear as to whether the problem is with OpenSSH code or Solaris. All I
know is that the latest PAM patches are not what fix the problem, even on
Solaris8. As I said before I did not have the latest PAM patches on my Solaris 8
compile box and password aging worked fine. I am not clear as to what on Solaris
8 allows this to work. So, in summary, there has not been a resolution to this
problem....at least not one that works without mucking with the shadow file,
etc.

-Scott
  ----- Original Message ----- 
  From: Gilbert.Patrick at hydro.qc.ca 
  To: scott.burch at camberwind.com 
  Sent: Monday, November 19, 2001 10:28 AM
  Subject: openssh password expiration problem 


  Hi scott, 

  I've been following your thread for the problem with expired passwords and
openssh 3.0.1p1.
  We are in the same boat. Seems it's broken on 2.6, I haven't gotten it
to work.

  Have you had any luck whatsoever? 

  Cheers, 
  Patrick 

-------------- next part --------------
An HTML attachment was scrubbed...
URL:
http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20011119/5fcdf26f/attachment.html

On Mon, 19 Nov 2001, Scott Burch wrote:
> Date: Mon, 19 Nov 2001 11:01:01 -0600
> From: Scott Burch <scott.burch at camberwind.com>
> To: Gilbert.Patrick at hydro.qc.ca
> Cc: OpenSSH Development <openssh-unix-dev at mindrot.org>
> Subject: Re: openssh password expiration problem
>
> openssh password expiration problemPatrick,
>
> Indeed password aging does not work with OpenSSH 3.0.1p1 on Solaris
> 2.6. >From what I can tell something is different with Solaris 2.6 and
> Solaris 2.8. I know that password expiration doesn't cause a problem
> on Solaris8. I'm unclear as to whether the problem is with OpenSSH
> code or Solaris. All I know is that the latest PAM patches are not
> what fix the problem, even on Solaris8. As I said before I did not
> have the latest PAM patches on my Solaris 8 compile box and password
> aging worked fine. I am not clear as to what on Solaris 8 allows this
> to work. So, in summary, there has not been a resolution to this
> problem....at least not one that works without mucking with the shadow
> file, etc.
It would seem that we need someone to help us who knows what is different
with pam_unix.so and/or libpam.so between Sol2.6 and Sol8.  The expired
password problem on 2.6, I'd guess, is a result of fixes in Sol8 that
never got back-ported to 2.6.  I'll keep looking, but I still haven't
found anything that would solve the problem...

	Ed

Ed Phillips <ed at udel.edu> University of Delaware (302) 831-6082
Systems Programmer III, Network and Systems Services
finger -l ed at polycut.nss.udel.edu for PGP public key