From owner-freebsd-questions@FreeBSD.ORG Wed Feb 2 18:12:14 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E565D16A4CF for ; Wed, 2 Feb 2005 18:12:14 +0000 (GMT) Received: from parrot.aev.net (host29-15.pool8174.interbusiness.it [81.74.15.29]) by mx1.FreeBSD.org (Postfix) with ESMTP id E532543D4C for ; Wed, 2 Feb 2005 18:12:12 +0000 (GMT) (envelope-from ml@netfence.it) Received: from soth.ventu (adsl-ull-137-5.41-151.net24.it [151.41.5.137]) (authenticated bits=128) by parrot.aev.net (8.13.1/8.13.1) with ESMTP id j12IPVhi004459 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for ; Wed, 2 Feb 2005 19:25:38 +0100 (CET) (envelope-from ml@netfence.it) Received: from netfence.it (xanatar.ventu [10.1.2.6]) (authenticated bits=0) by soth.ventu (8.13.1/8.12.10) with ESMTP id j12I7kKq033868 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for ; Wed, 2 Feb 2005 19:07:47 +0100 (CET) (envelope-from ml@netfence.it) Message-ID: <420118EE.7030607@netfence.it> Date: Wed, 02 Feb 2005 19:16:14 +0100 From: Andrea Venturoli User-Agent: Mozilla/5.0 (OS/2; U; Warp 4.5; en-US; rv:1.6) Gecko/20040117 X-Accept-Language: it,en,fr,de MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <41FF80F5.1060304@netfence.it> <20050201145738.G4781@gwdu60.gwdg.de> In-Reply-To: <20050201145738.G4781@gwdu60.gwdg.de> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Scanned-By: MIMEDefang 2.45 Subject: Re: Using PAM with ssh X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 02 Feb 2005 18:12:15 -0000 Konrad Heuer wrote: > I never tried by myself, but did you also modify /etc/pam.d/sshd? I think > that would be necessary. Of course; here it is: # # $FreeBSD: src/etc/pam.d/sshd,v 1.15 2003/04/30 21:57:54 markm Exp $ # # PAM configuration for the "sshd" service # # auth auth required pam_nologin.so no_warn #auth sufficient pam_opie.so no_warn no_fake_prompts #auth requisite pam_opieaccess.so no_warn allow_local #auth sufficient pam_krb5.so no_warn try_first_pass #auth sufficient pam_ssh.so no_warn try_first_pass auth sufficient /usr/local/lib/pam_smb_auth.so try_first_pass debug auth required pam_unix.so no_warn try_first_pass # account #account required pam_krb5.so account required pam_login_access.so account required pam_unix.so # session #session optional pam_ssh.so session required pam_permit.so # password #password sufficient pam_krb5.so no_warn try_first_pass password required pam_unix.so no_warn try_first_pass bye & Thanks av.