OpenPAM/SSHD privacy hole (FreeBSD 9.2+ affected)
Dag-Erling Smørgrav
des at des.no
Sun Oct 27 21:33:58 UTC 2013
Andrei <az at azsupport.com> writes:
> In /etc/pam.d/sshd from:
> auth required pam_unix.so no_warn try_first_pass
> to:
> auth required pam_unix.so no_warn try_first_pass authtok_prompt
>
> Right?
auth required pam_unix.so no_warn try_first_pass authtok_prompt="Password:"
BTW, I recently noticed that try_first_pass doesn't work as documented
(and hasn't for ten years), but I haven't had time to fix it yet.
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list