Package: libpam0g Version: 0.79-4 Severity: important Upon doing a dist-upgrade to Debian 4.0 via aptitude, login via ssh keyboard-interactive authentication to normal accounts (those with passwords) was broken. ssh -v reported authentication succeeding, then the connection would be closed immediately.
An excerpt from /var/log/auth.log showed there to be a problem with PAM: Apr 11 16:48:28 localhost sshd[14571]: Accepted keyboard-interactive/pam for neuro from 38.100.222.81 port 1064 ssh2 Apr 11 16:48:28 localhost sshd[14576]: (pam_unix) session opened for user neuro by (uid=0) Apr 11 16:48:28 localhost sshd[14576]: fatal: PAM: pam_setcred(): Permission denied Apr 11 16:48:28 localhost sshd[14576]: (pam_unix) session closed for user neuro Some Googling revealed that a 'solution' could be had by setting PermitEmptyPasswords to 'no' in /etc/ssh/sshd_config. This does indeed 'fix' the problem, but breaks the PermitEmptyPasswords functionality of openssh-server. Some people do in fact need sshd to permit empty passwords. I am among them, since I run a text-based BBS on Debian. -- System Information: Debian Release: 4.0 APT prefers oldstable APT policy: (500, 'oldstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.8-20041227.1 Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Versions of packages libpam0g depends on: ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries ii libpam-runtime 0.79-4 Runtime support for the PAM librar libpam0g recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
