Jan-Frode Myklebust wrote:> What's the status of your password expiry patch for AIX? Do you have a
> working one using /bin/passwd and privsep?
Yes. See http://bugzilla.mindrot.org/show_bug.cgi?id=14 for a diff
against the CVS tree or
http://www.zip.com.au/~dtucker/openssh/openssh-3.5p1-passexpire12.patch
for a diff against the 3.5p1 release.
Patch 12 works with AIX and /etc/shadow platforms, 13 adds HP-UX
non-trusted configuration and I have an unpublished one that does HP-UX
trusted config too (the same binary will work on both trusted and
non-trusted), but it's a lot of code.
I'm about to do one last cleanup of the patch (deleting the HP-UX
support) with the aim of getting the diff size down and getting it
merged.
If that patch gets in, I'll do another patch to generalize the expiry
support and put HP-UX back. It's trickier than it sounds because
selection of the expiry method can happen at compile time or run time in
some cases.
-Daz.