Re: behavior of passwordless logins has changed

To: Tobias Nygren <tnn%NetBSD.org@localhost>
Subject: Re: behavior of passwordless logins has changed
From: Chris Ross <cross+netbsd%distal.com@localhost>
Date: Sun, 23 Mar 2008 19:30:25 -0400


On Mar 23, 2008, at 19:04, Tobias Nygren wrote:

I have the default pam configuration, and am not using kerberos.
FWIW, I commented out this line in /etc/pam.d/system and now it works:

#auth sufficient pam_krb5.so no_warn try_first_pass

Maybe something is wrong in my userland, I'll try to clean objdir
and rebuild ...

Maybe if that was "use_first_pass" instead, it would keep it fromprompting....

There's no way for Kerberos (Heimdal or otherwise) to *know* if youhave a password, so it has to prompt before trying. I suppose thatthe pam_krb5.so module could never bother to try to prompt if kerberosisn't configured at all on the machine, though...


                    - Chris

Follow-Ups:
- Re: behavior of passwordless logins has changed
  - From: Michael van Elst

References:
- behavior of passwordless logins has changed
  - From: Tobias Nygren
- Re: behavior of passwordless logins has changed
  - From: Michael van Elst
- Re: behavior of passwordless logins has changed
  - From: Tobias Nygren

Prev by Date: Re: behavior of passwordless logins has changed
Next by Date: triweekly CVS update output
Previous by Thread: Re: behavior of passwordless logins has changed
Next by Thread: Re: behavior of passwordless logins has changed
Indexes:

Home | Main Index | Thread Index | Old Index