search for: have_pam

-----BEGIN PGP SIGNED MESSAGE----- Hi, I''ve got several replies, thank you for them. Let me summarize: o Many people say there is a PAMified version of ssh available at ftp://ftp.replay.com/pub/crypto/redhat/SRPMS (the source) ftp://ftp.replay.com/pub/crypto/redhat/i386 (Intel binaries) (there are analogous paths for the other architectures). The packages are made by Jan

...Added support for PAM + * * Revision 1.42 1997/04/23 00:05:35 kivinen * Added ifdefs around password expiration and inactivity checks, * because some systems dont have sp_expire and sp_inact fields. @@ -525,6 +528,14 @@ char *ticket = "none\0"; #endif /* KERBEROS */ +#ifdef HAVE_PAM +#include <security/pam_appl.h> +struct pam_handle_t *pamh=NULL; +char *pampasswd=NULL; +int retval; +int origretval; +#endif /* HAVE_PAM */ + /* Server configuration options. */ ServerOptions options; @@ -620,7 +631,56 @@ void do_child(const char *command, struct passwd *pw, const char...

...tch (mentioned here recently) Makefile: . Put OPT_FLAGS back in so I can set options in debian/rules . Install ssh with SUID bit set sshd.c: . use macro for PAM service name, so I can change it to ``ssh'' in debian/rules . disable motd & lastlogin messages if HAVE_PAM sshd.pam . Apparently this one works well, but I don't know how widespread pam_unix.o is, so perhaps offering it as an alternative, or as comments in the file sshd_config: . enable ForwardX11. I cannot see a reason to have this disabled on the server, and it'...