1 |
Ok, I have recently gotten LDAP working for most of the stuff I want it to do, |
2 |
and proceeded to move authentication to it. In doing so I have discovered that |
3 |
OpenSSH does not play nice with PAM + LDAP. |
4 |
|
5 |
>From what I have gathered from preliminary google digging is that the |
6 |
priviledge seperation rewrite broke PAM pretty severely. None of the password |
7 |
expiry stuff works anymore, and neither does the create home dirs option. |
8 |
|
9 |
I've already tried simply disabling the PrivSep stuff, but the problem goes |
10 |
deeper than that, so it doesn't help. Everything else (telnet/ftp/etc) works |
11 |
fine, it's only ssh that's giving me fits. |
12 |
|
13 |
I'm sure I'm not the only one with a setup like this. If someone else |
14 |
on the list is running in a configuration of this nature and has gotten |
15 |
ssh working, I'd appreciate a pointer to the information that got you past |
16 |
this. |
17 |
|
18 |
Thanks. |
19 |
|
20 |
-- |
21 |
Treat root like a loaded gun. Don't pull it out unless you mean to use it. |
22 |
If you mean to use it make sure you have a clear target and put it right |
23 |
back in the holster as soon as you're done. |
24 |
|
25 |
-- |
26 |
gentoo-dev@g.o mailing list |