Software for distribution of configuration files and changes
Jeremy Chadwick
koitsu at FreeBSD.org
Fri Nov 23 01:15:02 PST 2007
On Fri, Nov 23, 2007 at 02:14:14PM +0800, Quan Qiu wrote:
> > And have you tried actually attempting to log in with root's password
> > that way? I'm betting it doesn't work.
>
> That really worked for me. I'm running RELENG_5. The cvsid for
> /etc/pam.d/sshd is
> # $FreeBSD: src/etc/pam.d/sshd,v 1.15 2003/04/30 21:57:54 markm Exp $
> sshd version:
> OpenSSH_3.8.1p1 FreeBSD-20060930, OpenSSL 0.9.7e-p1 25 Oct 2004
>
> My proof:
>
> Using username "root".
> Using keyboard-interactive authentication.
> Password:
> Last login: Fri Nov 23 09:14:27 2007 from 61.136.19.236
> Copyright (c) 1980, 1983, 1986, 1988, 1990, 1991, 1993, 1994
> The Regents of the University of California. All rights reserved.
>
> FreeBSD 5.5-STABLE (JACKQQNAT) #6: Mon Nov 19 21:33:30 CST 2007
>
> root at services [~] 13:51 Fri Nov 23
> #cat /etc/pam.d/sshd
> #
> # $FreeBSD: src/etc/pam.d/sshd,v 1.15 2003/04/30 21:57:54 markm Exp $
> ...
>
>
> Without PAM:
>
> Using username "root".
> root at blahblah.blah's password:
> Access denied
> root at blahblah.blah's password:
Okay, so then the difference between what you're seeing and what I'm
seeing is likely attributed to either OpenSSH changes (less likely) or
PAM configuration changes between RELENG_5 and RELENG_6 (more likely).
http://www.freebsd.org/cgi/cvsweb.cgi/src/etc/pam.d/sshd
--
| Jeremy Chadwick jdc at parodius.com |
| Parodius Networking http://www.parodius.com/ |
| UNIX Systems Administrator Mountain View, CA, USA |
| Making life hard for others since 1977. PGP: 4BD6C0CB |
More information about the freebsd-stable
mailing list