search for: pam_session_close

...user*, which puts it in challenge-response case of needing more than one interaction. Since session modules can't interact with the user other than to display messages, you'd also need to put it in the PAM accounting stack. This is what bug #688 is about, and isn't related to this one (pam_session_close behaviour). IMO this bug can be closed with the release of openssh-4.8p1. Darren, do you agree? Isn't this also incorrectly marked as blocking 5.1? * See http://www.google.com/codesearch?hl=en&q=show:9Q9GBXVnR7k:chgFMim3giQ:glu2lh4-EfU&sa=N&ct=rd&cs_p=http://open-systems.ufl.e...

http://bugzilla.mindrot.org/show_bug.cgi?id=926 carsten.benecke at rrz.uni-hamburg.de changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |carsten.benecke at rrz.uni- | |hamburg.de ------- Comment #16 from

http://bugzilla.mindrot.org/show_bug.cgi?id=926 Summary: pam_session_close called as user or not at all Product: Portable OpenSSH Version: -current Platform: All URL: http://marc.theaimsgroup.com/?l=openssh-unix- dev&m=106458208520320 OS/Version: All Status: NEW Severity:...

http://bugzilla.mindrot.org/show_bug.cgi?id=926 ------- Comment #21 from t8m at centrum.cz 2006-08-05 01:18 ------- The patch causes a regression with pam_krb5 module. See https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=201341 As I said above I think that the only correct solution which would solve all cases (privsep yes/no, root/regular user) would be to add another fork before the

http://bugzilla.mindrot.org/show_bug.cgi?id=926 ------- Comment #8 from djm at mindrot.org 2006-05-22 15:12 ------- I don't understand - surely the limits should be applied in the *child* process and not the parent process? ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.

http://bugzilla.mindrot.org/show_bug.cgi?id=926 dtucker at zip.com.au changed: What |Removed |Added ---------------------------------------------------------------------------- OtherBugsDependingO| |914 nThis| | Status|NEW |ASSIGNED ------- You are

https://bugzilla.mindrot.org/show_bug.cgi?id=926 Darren Tucker <dtucker at zip.com.au> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #1216|0 |1 is obsolete| |

...do_pam_session() calls, and hook the do_pam_session calls into the login/logout recording in loginrec.c (to be called from the monitor). The existing loginmsg handling would allow any messages returned by PAM to be sent to the user. This would allow per-session login recording and would allow the pam_session_close to be called from the same process as the pam_session_open. It would mean that pam_session_open() would not be called be pam_setcred (since in privsep we switch to the real user very early). I'm not sure if that's going to be a problem or not. Comments (esp. from PAM folks) welcome. -...

https://bugzilla.mindrot.org/show_bug.cgi?id=926 Jan Engelhardt <jengelh at gmx.de> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jengelh at gmx.de --- Comment #33 from Jan Engelhardt <jengelh at

https://bugzilla.mindrot.org/show_bug.cgi?id=926 Darren Tucker <dtucker at zip.com.au> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |1353 --- Comment #27 from Darren Tucker <dtucker at zip.com.au> 2008-01-01 02:05:40 --- Patch #1216

...ion multiplexing master. (bz#1398) - Improve error messages when hostname resolution fails due to a system error. (bz#1417) - Make ssh(1) -q option documentation consistent with reality. (bz#1427 bz#1429) Portable OpenSSH bugs fixed: - Fixed sshd(8) PAM support not calling pam_session_close(), or failing to call it with root privileges. (bz#926) - Made sshd(8) use configuration-specified SyslogFacility for hosts_access(3) messages for denied connections. (bz#1042) - Implement getgrouplist(3) for AIX, enabling NSS LDAP to work on this platform. (bz#1081) - Fix c...

...ion multiplexing master. (bz#1398) - Improve error messages when hostname resolution fails due to a system error. (bz#1417) - Make ssh(1) -q option documentation consistent with reality. (bz#1427 bz#1429) Portable OpenSSH bugs fixed: - Fixed sshd(8) PAM support not calling pam_session_close(), or failing to call it with root privileges. (bz#926) - Made sshd(8) use configuration-specified SyslogFacility for hosts_access(3) messages for denied connections. (bz#1042) - Implement getgrouplist(3) for AIX, enabling NSS LDAP to work on this platform. (bz#1081) - Fix c...