I noticed a bit of odd behavior with openssh + pam_linux a while back. I do not know if anyone else has seen this since there are a few hoops that have to be jumped through. Background: RedHat 6.2 (heavily customized) running on intel box. Running pam-0.72-20.6.x + Openssh-2.9.9p2-1 (both redhat) Problem: Set a user account to expire as of yesterday (via shadow entry) Set the users account to allow login after it expires. On login user is prompted that the password has expired and to please change it. Password field echo's the entered password across! for example it looks like this (me at mybox) $ ssh me at anotherbox me at anotherbox's password: Your password has expired; please change it! Warning: Your password has expired, please change it now Changing password for me (current) UNIX password: test.1234 New UNIX password: test.1234 Password unchanged Connection to anotherbox closed by remote host. Connection to anotherbox closed. TCP dumps show its indeed coming across the session encrypted but something is spitting out plaintext. The Linux-Pam list suggested I mention it here to see if anyone else has seen it. The /etc/pam.d/sshd entry is identical to other login methods but do not exhibit this behavour. Any thoughts?
On Tue, Feb 05, 2002 at 11:03:05AM -0500, Steven S wrote:> TCP dumps show its indeed coming across the session encrypted but > something is spitting out plaintext. The Linux-Pam list suggested Ican you please show the tcpdump output?
On Tue, Feb 05, Steven S wrote: [cut]> Background: > RedHat 6.2 (heavily customized) running on intel box. > Running pam-0.72-20.6.x + Openssh-2.9.9p2-1 (both redhat) > > Password field echo's the entered password across!Try upgrading to OpenSSH-3.0.2p1. I noticed the same echo problem, but the newer OpenSSH version don't echo the password. -Jarno -- Jarno Huuskonen <Jarno.Huuskonen at uku.fi>
In a later version of OpenSSH. - Ben> > in a later version of Openssh? or Pam_Linux? > > On Wed, 6 Feb 2002, Markus Friedl wrote: > > > > ah, i think this has been fixed. > > > > _______________________________________________ > openssh-unix-dev at mindrot.org mailing list > http://www.mindrot.org/mailman/listinfo/openssh-unix-dev >
On Wed, Feb 06, 2002 at 10:15:21AM -0500, Steven S wrote:> unless i'm clueless on tcpdump, its definatly not sending in plaintext but > its echoing. > > $ ssh me at anotherhost > me at anotherhost's password: > Your password has expired; please change it! > Warning: Your password has expired, please change it now > Changing password for me > (current) UNIX password: test.1234^^^^^^^^^^^^^^^^^^^^^^^6> Connection to nightshift closed by remote host. > Connection to nightshift closed.ah, i think this has been fixed.