openssh unix dev - Jul 2002 - AIX and ADMCHG

In AIX, whenever a root user or a member of the security group changes a
user's password, the ADMCHG attribute is set which means that the next
time the user logs in, he will be forced to change his password. 
However, ssh is currently ignoring ADMCHG.  

I havn't seen any mention of this on the mailing list or Bugzilla, so
I'm considering writing a patch to correct this problem.  Has anyone
else looked at this?

-----------------------

Kevin Cawlfield
AIX IP Security
cawlfiel at austin.ibm.com

-----------------------

For password change to be  handled correctly  one needs to implement
SSH_MSG_USERAUTH_PASSWD_CHANGEREQ and the corresponding
SSH_MSG_USERAUTH_REQUEST.

I thought I saw a patch floating around for the general support but I
don't have it link to it off hand.

http://search.ietf.org/internet-drafts/draft-ietf-secsh-userauth-15.txt

- Ben

On Tue, 23 Jul 2002, cawlfiel wrote:
> In AIX, whenever a root user or a member of the security group changes a
> user's password, the ADMCHG attribute is set which means that the next
> time the user logs in, he will be forced to change his password.
> However, ssh is currently ignoring ADMCHG.
>
> I havn't seen any mention of this on the mailing list or Bugzilla, so
> I'm considering writing a patch to correct this problem.  Has anyone
> else looked at this?
>
> -----------------------
>
> Kevin Cawlfield
> AIX IP Security
> cawlfiel at austin.ibm.com
>
> -----------------------
> _______________________________________________
> openssh-unix-dev at mindrot.org mailing list
> http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
>