Problems with the pam_opieaccess PAM module
Dag-ErlingSmørgrav
des at des.no
Tue Jul 8 16:18:02 PDT 2003
Brendan Bank <brendan at gnarst.net> writes:
> And in /etc/pam.conf I added:
>
> sshd auth required pam_opie.so
> sshd auth requisite pam_opieaccess.so
> sshd auth required /usr/lib/pam_krb5.so.1 try_first_pass forwardable
Where in /etc/pam.conf? There are already sshd lines in pam.conf, and
things may not work as you expect if you merely added your lines
rather than replace what was already there.
BTW, I use the following:
root at flood ~# grep sshd /etc/pam.conf
#sshd auth sufficient pam_skey.so
sshd auth sufficient pam_opie.so no_fake_prompts
sshd auth requisite pam_opieaccess.so
#sshd auth sufficient pam_kerberosIV.so try_first_pass
#sshd auth sufficient pam_krb5.so try_first_pass
sshd auth required pam_unix.so try_first_pass
sshd account required pam_unix.so
sshd password required pam_permit.so
sshd session required pam_permit.so
and it works perfectly.
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list