Sounds to me like you have a pam.d module configured to authenticate SSH
against an LDAP backend, whereas it sounds like you don't have telnet or ftp
set up to authenticate against an external security agent. So the items for
which there is no pam module configured will authenticate against the
local linux repository. Do you have the user ID defined locally on linux or
are you doing ALL of your authentication and group management via the Db2
backend for LDAP?
If you have the users/passwords authenticating via /etc/passwd & /etc/shadow,
anything not authenticating against an LDAP backend via pam, you'll get
a message from the linux password management code, otherwise you'll get it from
the LDAP backend query.
Just my 2 cents. Might be entirely off base.
-J
"McKown, John" <[EMAIL PROTECTED]>
Sent by: Linux on 390 Port
<[email protected]>
To
[email protected]
cc
08/30/2006 08:12 AM
Subject
password
about to expire message.
Please respond to
Linux on 390 Port <[email protected]>
Well, having bothered the z/OS people about this, I thought I'd come
over here and bother the Linux people. I've noticed something that I
consider "interesting" (you likely will disagree). If I logon to Linux
via "telnet" or an "su - userid", and I have a password which is about
to expire, I get a message to that effect. However, if I use "ssh", I do
not get such a message. Neither to I get such a message from my ftp
server (vsFTPd). Now, the lack of a message from the ftp server (and web
server for that matter) is not surprising. But the lack of a message
from "ssh" is surprising given that "telnet" and "su - userid" both give
a "You password will expire in ... days." message.
Now, nobody likes telnet and says to replace it with ssh. I agree. But
am I missing something in ssh that causes ssh to not warn about an
expiring password?
Just curious.
--
John McKown
Senior Systems Programmer
HealthMarkets
Keeping the Promise of Affordable Coverage
Administrative Services Group
Information Technology
This message (including any attachments) contains confidential
information intended for a specific individual and purpose, and its
content is protected by law. If you are not the intended recipient, you
should delete this message and are hereby notified that any disclosure,
copying, or distribution of this transmission, or taking any action
based on it, is strictly prohibited.
----------------------------------------------------------------------
For LINUX-390 subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
----------------------------------------------------------------------
For LINUX-390 subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
