pam_ldap and passwd
Clement Laforet
sheepkiller at cultdeadsheep.org
Mon Nov 24 03:13:03 PST 2003
On Mon, 24 Nov 2003 10:39:16 +0100
Yuri Khotyaintsev <yuri at irfu.se> wrote:
> I have a server where I use pam_ldap and nss_ldap. Everything works
> fine except for changing passwords:
>
> [user at ice][~]# passwd
> passwd: Sorry, `passwd' can only change passwords for local or NIS
> users.
>
> As I understand pam_ldap supports changing LDAP passwords. Is it
> supposed to work on FreeBSD ?
according to src/usr.bin/passwd/passwd.c:
...
/* check where the user's from */
switch (pwd->pw_fields & _PWF_SOURCE) {
case _PWF_FILES:
fprintf(stderr, "Changing local password for %s\n",
pwd->pw_name);
break;
case _PWF_NIS:
fprintf(stderr, "Changing NIS password for %s\n",
pwd->pw_name);
break;
default:
/* XXX: Green men ought to be supported via PAM. */
errx(1,
"Sorry, `passwd' can only change passwords for local or NIS users.");
}
...
If you change default: behaviour you CAN change your password. Currently,
passwd is not fully PAM-aware.
clem
More information about the freebsd-current
mailing list