| 1 |
Ok, I have recently gotten LDAP working for most of the stuff I want it to do, |
| 2 |
and proceeded to move authentication to it. In doing so I have discovered that |
| 3 |
OpenSSH does not play nice with PAM + LDAP. |
| 4 |
|
| 5 |
>From what I have gathered from preliminary google digging is that the |
| 6 |
priviledge seperation rewrite broke PAM pretty severely. None of the password |
| 7 |
expiry stuff works anymore, and neither does the create home dirs option. |
| 8 |
|
| 9 |
I've already tried simply disabling the PrivSep stuff, but the problem goes |
| 10 |
deeper than that, so it doesn't help. Everything else (telnet/ftp/etc) works |
| 11 |
fine, it's only ssh that's giving me fits. |
| 12 |
|
| 13 |
I'm sure I'm not the only one with a setup like this. If someone else |
| 14 |
on the list is running in a configuration of this nature and has gotten |
| 15 |
ssh working, I'd appreciate a pointer to the information that got you past |
| 16 |
this. |
| 17 |
|
| 18 |
Thanks. |
| 19 |
|
| 20 |
-- |
| 21 |
Treat root like a loaded gun. Don't pull it out unless you mean to use it. |
| 22 |
If you mean to use it make sure you have a clear target and put it right |
| 23 |
back in the holster as soon as you're done. |
| 24 |
|
| 25 |
-- |
| 26 |
gentoo-dev@g.o mailing list |
Archives