current-users: Re: pam, ssh, and pam

Subject: Re: pam, ssh, and pam_ssh
To: None <current-users@netbsd.org>
From: Xavier HUMBERT <xavier.humbert@xavhome.fr.eu.org>
List: current-users
Date: 03/17/2005 00:44:03

Christos Zoulas <christos@tac.gw.com> wrote:

> I commented out pam_ssh from all the /usr/src/etc/pam.d files.

Mmmh.. Rebuild the whole thing this evening. Ssh doesn't work at all,
now. Syslog says this:
>Mar 17 00:27:46 arnor sshd: in openpam_read_chain(): 
>    /etc/pam.d/sshd(8): invalid control flag 'sufficient,optional'

The whole world was rebuild and installed.

Here is the output of ident on sshd. I guess auth-pam.c is the relevant
file :
     $NetBSD: auth-pam.c,v 1.2 2005/02/13 18:13:34 christos Exp $
The version is the same as the source file
/usr/src//crypto/dist/ssh/auth-pam.c I that I CVSed today

Note that setting UsePam to no in sshd_config brings back the old
behavior.

Regards,

XAv
-- 
Mourir... mourir de rire, c'et possiblement vrai
D'ailleurs la preuve en est qu'ils n'osent plus trop rire
(J. Brel)