Displaying 3 results from an estimated 3 matches for "delete_cred".
2008 Oct 27
3
[Bug 1534] New: openssh calls pam functions in the wrong order on logout
...chment (id=1577)
--> (http://bugzilla.mindrot.org/attachment.cgi?id=1577)
openssh pam fix for calling functions in the right order on logout
Copied from original bugreport by Andreas Schwab in Novell bugzilla:
openssh calls the pam functions on logout in the wrong order.
pam_setcred with the DELETE_CRED flag is called before
pam_close_session is called.
This means that e.g. a kerberos aware module can't use the kerberos
credentials cache to close it's session, cause the tickets are already
gone.
pam_setcred with DELETE_CRED should be called after pam_close_session.
See attached patch....
2005 May 22
3
[Bug 926] pam_session_close called as user or not at all
http://bugzilla.mindrot.org/show_bug.cgi?id=926
dtucker at zip.com.au changed:
What |Removed |Added
----------------------------------------------------------------------------
OtherBugsDependingO|994 |
nThis| |
------- Additional Comments From dtucker at zip.com.au 2005-05-22 11:03 -------
2005 Jun 29
3
sshd deletes the GSSAPI ticket on exit
Hello All,
I have run into a situation where a user exiting from a
PAM_KERBEROS-authenticated session runs the risk of deleting a
kinit-generated credentials file that was already sitting on the server. I
will explain the problem in detail, but let me begin with my question. It
has a specific reference to PAM_KERBEROS, but it can also be a general
question.
If a user (ssh) session was