Actually, I take my previous statement back. I can only get public
key auth to work. Password auth fails, telling me I have the wrong
password (in /var/log/messages).
--
Brian McNally
Begin forwarded message:
From: Brian McNally <[EMAIL PROTECTED]>
Date: November 29, 2006 12:30:24 PM PST
To: Lamont Granquist <[EMAIL PROTECTED]>
Subject: Re: Disabling sshd's account lock check
Fantastic, modifying LOCKED_PASSWD_PREFIX seems to have done the
trick. Much thanks.
--
Brian McNally
On Nov 29, 2006, at 11:51 AM, Lamont Granquist wrote:
check the values of LOCKED_PASSWD_PREFIX, LOCKED_PASSWD_STRING and
LOCKED_PASSWD_SUBSTR in config.h -- depending on your platform and
how openssh was compiled you may have different values defined there.
if you want to bypass this for a single user, just use a string in
the passwd field which ssh isn't compiled to match.
otherwise make sure all those are not defined in config.h and
recompile ssh (doesn't seem to be an autoconf option to tweak this)
On Tue, 28 Nov 2006, Brian McNally wrote:
Versions of sshd >3.8 check to see if a user's account is locked
when authenticating them. Is there a way to disable this
"feature", either at compile time or with an undocumented option
in sshd_config?
Thanks,
--
Brian McNally
