Displaying 20 results from an estimated 400 matches similar to: "3.2.3p1/auth-pam.c: PAM_PROMPT_ECHO_OFF in INITIAL_LOGIN pam state"
2001 Oct 09
1
TISviaPAM patch
Here is a patch that does TIS auth via PAM. It's controlled by a switch
in the sshd_config. You'd use it by having a PAM module that sets
PAM_PROMPT_ECHO_ON. eg, you could use it with pam_skey or pam_smxs.
The patch is against the 2.9.9p2 distribution.
I'm not on the list, a reply if this patch is accepted would be great.
(But not required, I know some folks have a distaste for
2002 Feb 15
0
[Bug 118] New: Implement TIS (protocol 1) via PAM
http://bugzilla.mindrot.org/show_bug.cgi?id=118
Summary: Implement TIS (protocol 1) via PAM
Product: Portable OpenSSH
Version: -current
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P3
Component: sshd
AssignedTo: openssh-unix-dev at mindrot.org
ReportedBy: fcusack at
2000 Sep 13
2
auth-pam.c support for pam_chauthtok()
When we installed OpenSSH 2.1.1p4 on our Solaris systems, our users
noticed that it did not honor password expiration consistently with
other Solaris login services.
The patch below is against OpenSSH 2.2.0p1 and adds support for PAM
password changes on expiration via pam_chauthtok(). A brief summary of
changes:
auth-pam.c:
* change declaration of pamh to "static pam_handle_t *pamh",
2001 Mar 21
2
Challenge response authentication and PAM
As an experiment I set up Challenge/response authentication on a Linux
system with PAM using a pam_opie module (this module works fine with
console logins and su).
I can log into the box using the opie password, *but* it does not give
me the challenge - which can make things a little tricky :-)
I can well believe this might be a fault in the PAM pam_opie module I
am using, so has anyone got
2001 Nov 07
2
Flaw in empty password authentication in sshd
The auth-pam.c of sshd server contains a small flaw that allows empty
password logins even if "PermitEmptyPasswords" option in the sshd config
file is set to "no". The scenario is as follows:
Using ssh the user tries to logon to the machine using an account that has
empty password. If the user presses enter on the password prompt (NULL
password) access is
2003 Nov 02
1
opie bug or ..?
Hi. I have a question related to freebsd opie implementation.
I am running 4.9-RELEASE and I've tried to setup opie.
*** 1 *** opiepasswd/opiekey
I've added user using `opiepasswd -c "ssa"`
mx2# opiepasswd -c "ssa"
Adding ssa:
Only use this method from the console; NEVER from remote. If you are using
telnet, xterm, or a dial-in, type ^C now or exit with
2002 Jan 07
3
keyboard-interactive
Is there a way for a PAM module to force a client (and the server) to
use kbd-interactive? As far as I can tell, when in the INITIAL_LOGIN
phase, all communication with the client returns a PAM_CONV_ERR. I am
trying to write a PAM module that will prompt a user for a second
username and a second password in order for the module to succeed so
that proper authentication relies on the ability
2003 Sep 23
5
PAM sessions and conversation functions
In OpenSSH 3.6.1p2, pam_open_session() ran with a conversation function,
do_pam_conversation(), that fed text to the client. In OpenSSH 3.7.1p2,
this is no longer the case: session modules run with a conversation
function that just returns PAM_CONV_ERR. This means that simple session
modules whose job involves printing text on the user's terminal no
longer work: pam_lastlog, pam_mail, and
2002 Dec 26
1
changing passwords from win2k
I having been trouble by this for a few days now and was wondering if anyone
else has had any luck with this?
I am currently running Samba 2.2.6pre2 on FreeBSD 4.7-RELEASE
I have successfully set up samba to be the PDC
I am unsuccessfully trying to change the passwords on the W2k box and I am
recieving the error that the user name/password are incorrect make sure the
caps lock is not on.
When I
2002 Nov 20
0
[PATCH #9] Password expiration via /bin/passwd.
This is an attempt to simplify the AIX expiry-via-passwd stuff and make
it more generic. (There's actually a net reduction in #ifdefs).
Patch against CVS:
1) configure finds passwd.
2) sshd uses passwd during session if required.
3) sshd uses passwd for PAM change if privsep disabled.
4) sshd uses Buffers for expire and post-login messages (no longer AIX
specific).
5) password_change_required
2003 Jun 27
1
Problems with the pam_opieaccess PAM module
Hi,
I've configured opie (one time passwords) under FreeBSD and I came
across the following problem.
It looks like libpam does not stop the authentication process when
a 'requisite' module fails. I find this strange as the pam 'requisite'
is defined in the man pages as: requisite - failure of such a PAM
results in the immediate termination of the authentication process;
Here
2003 Oct 31
4
Samba and private shares
I'm running samba 2.5 on a FreeBSD box using winbind to do authentication
with my PDC/BDC. I'm able to configure shares that everyone on the NT
network can access but when I configure private shares (only 1 or 2 users
have access to) the users get prompted for a username and password and are
not allowed access. What am I doing wrong? Below I have included a copy of
my smb.conf and pam.conf
2005 Jun 16
2
FreeBSD ssh AD authentication
After reading the related chapter in the Samba-3 HOWTO document
I've tried to put the AD authentication in place in our network
on two systems and I got stuck in exactly the same place.
Here are the software configs I was using :
Sys 1
FreeBSD 4.11 release
sshd version OpenSSH_3.5p1 FreeBSD-20030924
Samba Version 3.0.10
Sys 2
FreeBSD 5.4-RELEASE FreeBSD amd64
OpenSSH_3.8.1p1
2001 Jun 02
2
pam_opie
Hi, did a search in the archives for "opie" and this is the most recent
message on the topic I see:
http://marc.theaimsgroup.com/?l=openssh-unix-dev&m=98536878202858&w=2
Nigel, would you mind sending me the source for the module you've
extracted from that other distribution?
Also, if anyone is interested in looking at other OPIE PAM modules, here
are two more:
Andy
2000 Dec 02
2
pam, openssh and opie
Hello folks, this looks about the only place I can find on issues dealing
with the subject line. The message that got me posting is included below the
line of *'s.
Basically I've tried getting this working with Pam authentication and using
the new login binary that comes with Opie 2.32. No joy.
I am using
RedHat 6.0
OpenSSH 2.3.0p1
Pam 0.66-18
I can get the opie challenge only on a
2008 Apr 25
6
ActionMailer
Hi all,
I need a help. I have got a user registration form, where the user signs
up and then an activation link is sent to the user email id for
activating his/her account. Now I need to send an another email to the
user, only after he logs in for the first time in my site, then the
second email should be sent. Can anybody give me some suggestion on how
to do it ??
NB: When the user clicks on
2007 Apr 13
1
Samba3 : no suitable range available for sid
I'm setting up a freebsd server which will authenticate against an
Active Directory
I mean: the server will NOT have any local users (except mandatory and
minimum
required for management and configuration) and will authenticate requests
for login and access
FOR EVERY SERVICE against an Active Directory Server
I have configured the samba service and currently I can
login to local terminal,
2007 May 17
3
place plugin
The place plugin has a bug:
when compiz is restarted or started to replace another wm it the windows
are placed in weird positions ( titlebar behind the panel etc.)
shouln't the place plugin loop over all open windows and place them
correctly when loaded? this should solve this issues.
any reason why this isn't done? have I missed something or is this just
a bug?
2001 Mar 30
1
PAM and -u0
is this change ok? goal is that PAM with -u0 does not use DNS (like
without PAM).
Index: auth-pam.c
===================================================================
RCS file: /var/cvs/openssh/auth-pam.c,v
retrieving revision 1.34
diff -u -r1.34 auth-pam.c
--- auth-pam.c 2001/03/27 06:12:24 1.34
+++ auth-pam.c 2001/03/30 16:46:12
@@ -41,6 +41,10 @@
static int do_pam_conversation(int num_msg,
2011 Feb 18
1
Not sure I understand when add user script is called
I've built a domain member. It works pretty good with the exception
that I want on-the-fly home directories being built. I'm not sure this
is doable with a domain member as everything I've tried isn't even
called - as far as I can tell. Using log level 3.
If anyone can shed light on how to dynamically create home directories,
that'd be great.
anyway, here's my