Date: Mon, 7 May 2001 19:31:18 -0700 (PDT) From: John Polstra <jdp@polstra.com> To: current@freebsd.org Cc: knu@iDaemons.org Subject: Re: OpenSSH 2.9 problems Message-ID: <200105080231.f482VIX65895@vashon.polstra.com> In-Reply-To: <86g0ekxevw.wl@archon.local.idaemons.org> References: <86g0ekxevw.wl@archon.local.idaemons.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In article <86g0ekxevw.wl@archon.local.idaemons.org>,
Akinori MUSHA <knu@iDaemons.org> wrote:
> I have some problems with the newly updated OpenSSH 2.9.
>
> 1. Sshd fails to authenticate via PAM.
>
> May 5 19:18:07 archon sshd[803]: fatal: PAM setcred failed[6]: Permission denied
If you would just like to get it to work until the person who broke it
fixes it properly, the patch below will accomplish that. This is _not_
a correct fix, and it should definitely not be committed.
John
Index: auth-pam.c
===================================================================
RCS file: /home/ncvs/src/crypto/openssh/auth-pam.c,v
retrieving revision 1.3
diff -u -r1.3 auth-pam.c
--- auth-pam.c 2001/05/05 01:12:45 1.3
+++ auth-pam.c 2001/05/08 02:24:45
@@ -151,11 +151,13 @@
pam_retval, PAM_STRERROR(pamh, pam_retval));
}
+#if 0 /* XXX */
pam_retval = pam_setcred(pamh, PAM_DELETE_CRED);
if (pam_retval != PAM_SUCCESS) {
debug("Cannot delete credentials[%d]: %.200s",
pam_retval, PAM_STRERROR(pamh, pam_retval));
}
+#endif
pam_retval = pam_end(pamh, pam_retval);
if (pam_retval != PAM_SUCCESS) {
@@ -261,6 +263,7 @@
/* Set PAM credentials */
void do_pam_setcred(void)
{
+#if 0 /* XXX */
int pam_retval;
debug("PAM establishing creds");
@@ -269,6 +272,7 @@
fatal("PAM setcred failed[%d]: %.200s",
pam_retval, PAM_STRERROR(pamh, pam_retval));
}
+#endif
}
/* accessor function for file scope static variable */
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200105080231.f482VIX65895>