https://bugzilla.mindrot.org/show_bug.cgi?id=2796
--- Comment #5 from Tomas Mraz <[email protected]> --- The only mechanism that could be fairly reliable but convoluted and not completely universal would be to have some special PAM module - let's call it pam_ssh_authtok. The admin would be required to add the module as the first one into the password PAM stack. This module would get the new password from the sshd either via the conversation function or via some other out of band mechanism. Then it would set the PAM_AUTHTOK (and maybe also PAM_OLDAUTHTOK). Following PAM modules in the stack would then do the actual password change. -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug. _______________________________________________ openssh-bugs mailing list [email protected] https://lists.mindrot.org/mailman/listinfo/openssh-bugs
