Your message dated Tue, 2 Dec 2008 21:44:06 +0100 with message-id <[EMAIL PROTECTED]> and subject line Experimental version 1.92 has caused the Debian Bug report #367586, regarding libpam-ssh: auth sufficient doesn't play nice with libpam-mount to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 367586: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=367586 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems
--- Begin Message ---Package: libpam-ssh Version: 1.91.0-9.1 Severity: important Tags: patch libpam-ssh's config file /etc/pam.d/pam-ssh-auth is configured as "auth sufficient". auth sufficient seems to remove the auth token which is required by libpam-mount in order to mount encrypted or password protected partitions. patch: change /etc/pam.d/pam-ssh-auth from auth sufficient pam_ssh.so try_first_pass keyfiles=id_dsa,id_rsa,identity,id_dsa1,id_dsa2,id_dsa3 to auth optional pam_ssh.so try_first_pass keyfiles=id_dsa,id_rsa,identity,id_dsa1,id_dsa2,id_dsa3 After this little change I'm able to mount my encrypted home drive and use libpam-ssh. As far as I understand PAM making libpam_ssh sufficient was a bad choice in first place. It's an optional extension. :] Greetings Christian -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (990, 'testing'), (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.16-1-686 Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages libpam-ssh depends on: ii libc6 2.3.6-7 GNU C Library: Shared libraries ii libpam0g 0.79-3.1 Pluggable Authentication Modules l ii libssl0.9.8 0.9.8a-8 SSL shared libraries Versions of packages libpam-ssh recommends: ii ssh 1:4.2p1-8 Secure shell client and server (tr -- no debconf information
--- End Message ---
--- Begin Message ---libpam-ssh (1.92-1) experimental; urgency=low * New upstream release, which obsoletes some of the previous patches. (Closes: #437458) * Made the default PAM control be 'optional' instead of 'sufficient' so that other PAM modules on the stack will continue to execute, thanks to Christian Heimes. (Closes: #367586) * patches/enable-debug-info.diff: Make the debug option have an effect. * patches/fix-try-first-password.diff: Make pam_ssh behave like the manual page says it should, namely first trying the password from the preseding PAM module, and otherwise ask for a specific SSH password. In addition, it now completely refrains from asking passwords if there are no such SSH keys, and always use all SSH keys matching id_* (mostly thanks to a patch from Javier Serrano Polo), which means that the option keyfiles is now obsolete. (Closes: #350514,#336291,#477272) * Always use up-to-date config.{sub,guess} from autotools-dev. * Removed the pam- prefix from the pam modules so they are now simply called ssh-auth and ssh-session which is in line with other pam modules, hence the upload to experimental. * Updated dependencies from ssh to openssh, and removed ancient lower bounds on various version numbers. (Closes: #346393) * Clarified package description and documentation in general, and added explanation of option 'allow_blank_passphrase'. * Migrated to source package format 3.0 to use the upstream bzip2 tar ball directly, and migrated to quilt patch system while at it. * New maintainer. (Closes: #503487) -- Jens Peter Secher <[EMAIL PROTECTED]> Sun, 30 Nov 2008 15:41:52 +0100
--- End Message ---
