From owner-freebsd-current Sun Jan 20 12: 3:59 2002 Delivered-To: freebsd-current@freebsd.org Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (Postfix) with ESMTP id E378B37B405 for ; Sun, 20 Jan 2002 12:03:57 -0800 (PST) Received: by flood.ping.uio.no (Postfix, from userid 2602) id AF967532C; Sun, 20 Jan 2002 21:03:56 +0100 (CET) X-URL: http://www.ofug.org/~des/ X-Disclaimer: The views expressed in this message do not necessarily coincide with those of any organisation or company with which I am or have been affiliated. To: Mark Murray Cc: "Andrey A. Chernov" , current@freebsd.org Subject: Re: Step2, pam_unix just expired pass fix for review References: <20020120191711.GA23576@nagual.pp.ru> <200201201947.g0KJltt32724@grimreaper.grondar.org> From: Dag-Erling Smorgrav Date: 20 Jan 2002 21:03:56 +0100 In-Reply-To: <200201201947.g0KJltt32724@grimreaper.grondar.org> Message-ID: Lines: 15 User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/21.1 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Mark Murray writes: > > Bug: > > There is possible when pam_sm_acct_mgmt() called, password is not > > expired, but due to some delay between calls (like network delays for NIS > > passwords), expired at the moment of pam_sm_authenticate() check. > It is not pam_sm_authenticate()'s job to determine such things as expiry. > This is the business of pam_sm_acct_mgmt(). Oww, I thought this patch *was* to pam_sm_acct_mgmt(), but I just realized it's not. You're right, it's inappropriate for pam_sm_authenticate(). DES -- Dag-Erling Smorgrav - des@ofug.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message