From owner-cvs-all Mon Mar 6 13: 6:14 2000 Delivered-To: cvs-all@freebsd.org Received: from kobayashi.uits.iupui.edu (kobayashi.uits.iupui.edu [134.68.11.80]) by hub.freebsd.org (Postfix) with ESMTP id 7D19B37BF4F; Mon, 6 Mar 2000 13:05:59 -0800 (PST) (envelope-from ajk@iu.edu) Received: from localhost (ajk@localhost) by kobayashi.uits.iupui.edu (8.9.3/8.9.3) with ESMTP id QAA08736; Mon, 6 Mar 2000 16:05:48 -0500 (EST) (envelope-from ajk@iu.edu) Date: Mon, 6 Mar 2000 16:05:48 -0500 (EST) From: "Andrew J. Korty" X-Sender: ajk@kobayashi.uits.iupui.edu To: Adrian Pavlykevych Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org, Peter Wemm Subject: Re: cvs commit: src/lib/libpam/modules/pam_ssh Makefile Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > Make pam_ssh work. It had an undefined symbol when it was > dlopen()ed. I'm not quite sure about this, I think it should be > using -lssh_pic since it's being linked into a .so, but nothing > seems to complain ahd it does work. (well, it works for using > the authorized_keys file, but I have not figured out how to get > it to start a ssh-agent and cache the key for me) Do you have this line in /etc/pam.conf? xdm session optional pam_ssh.so Btw, we should really put some example lines in the default pam.conf file along the lines of xdm auth sufficient pam_skey.so xdm auth requisite pam_cleartext_pass_ok.so xdm auth sufficient pam_ssh.so try_first_pass xdm auth required pam_unix.so try_first_pass xdm account required pam_unix.so xdm session optional pam_ssh.so -- Andrew J. Korty, Lead Security Engineer Office of the Vice President for Information Technology Indiana University To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message