Hosting Provided By

Password Expiry on Solaris with 3.5p1

From: Mark O'Brien <Mark.OBrien(at)Cognotec.Com>
Date: Tue Nov 26 2002 - 06:59:20 EST

Hi,

It appears that changing of expired passwords using SSH is no longer supported. I tried it with 3.5p1 on Solaris 8 - but it does not work.

Basically an expired user is treated as a failed login.

Is this the case or can it be configured to work ? Any know if plans exist to (re-)introduce it in the future ?

thanks

Mark

# /usr/local/sbin/sshd -d

debug1: sshd version OpenSSH_3.5p1
debug1: private host key: #0 type 0 RSA1
debug1: read PEM private key done: type RSA
debug1: private host key: #1 type 1 RSA
debug1: read PEM private key done: type DSA
debug1: private host key: #2 type 2 DSA
debug1: Bind to port 22 on ::.

Server listening on :: port 22.
debug1: Bind to port 22 on 0.0.0.0.
Server listening on 0.0.0.0 port 22.
Generating 768 bit RSA key.
RSA key generation complete.
debug1: Server will not fork when running in debugging mode. Connection from 192.168.6.152 port 2046
debug1: Client protocol version 1.5; client software version PuTTY-Release-0.52

debug1: no match: PuTTY-Release-0.52
debug1: Local version string SSH-1.99-OpenSSH_3.5p1
debug1: Sent 768 bit server key and 1024 bit host key.
debug1: Encryption type: 3des
debug1: cipher_init: set keylen (16 -> 32)
debug1: cipher_init: set keylen (16 -> 32)
debug1: Received session key; encryption turned on.
debug1: Installing crc compensation attack detector.
debug1: Starting up PAM with username "mobrien"
debug1: PAM setting rhost to "mobrienits.cognotec.com"
debug1: Attempting authentication for mobrien.
debug1: PAM Password authentication accepted for user "mobrien"

PAM rejected by account configuration[10]: Get new authentication token Failed password for mobrien from 192.168.6.152 port 2046

Do you need help?

> ______________________________________________________
> Mark O'Brien
> Cognotec Limited
> Office +353 1 6099308 2-4 Ely
> Place

Email	mailto:mark.obrien@cognotec.com		Dublin 2
	
http://www.cognotec.com			Ireland

text/plain attachment: InterScan_Disclaimer.txt

Received on Tue Nov 26 11:38:06 2002

This message: [ Message body ]
Next message: Alexander.Farber(at)nokia.com: "How to forbid empty passphrases?"
Previous message: Ben Lindstrom: "Re: 2GB File Size Limit in OpenSSH_2.5.2p2?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:51 EDT