Bug#269457: pam_krb5 should read PAM_OLDAUTHTOK instead of PAM

Web Server Talk > Unix and Linux reviews > Free Debian support > Debian Developers > Bug#269457: pam_krb5 should read PAM_OLDAUTHTOK instead of PAM_AUTHTOK when changing a

Last Thread Next Thread Next

Bug#269457: pam_krb5 should read PAM_OLDAUTHTOK instead of PAM_AUTHTOK when changing a

Brian May

09-25-04 07:50 AM

>>>>> "Andreas" =3D=3D Andreas V=F6gele <voegele@trustsec.de> writes:

Andreas> I think that there's a bug in pam_krb5_pass.c. When
Andreas> use_first_pass or try_first_pass is used the function
Andreas> pam_sm_chauthtok() tries to get the old password from the
Andreas> preceding module with PAM_AUTHTOK. The problem is that
Andreas> pam_unix_passwd doesn't store the old password in
Andreas> PAM_AUTHTOK but in PAM_OLDAUTHTOK. See
Andreas> pam-0.76/Linux-PAM/modules/pam_unix/pam_unix_passwd.c:

Hello All,

I am not familiar with the specifications of PAM. Can I please get a
2nd opinion to ensure the patch given at
<URL:http://bugs.debian.org/269457>, based on the above description,
is correct?

It looks OK to me.

Thanks.
--=20
Brian May <bam@debian.org>

[ Post a follow-up to this message ]

Most Popular forums

Apache Server	MySQL for Windows	Sendmail
Red Hat Networking	SuSe Linux	Debian Linux
FreeBSD administration	Sun Solaris administration	Unix Shell programming
WebSphere Portal Server	Exchange 2000 administration	PostgreSQL administration
Linux Security	Computer Security	Firewalls

Forum Jump:

Forum Rules:

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

HTML code is OFF
vB code is ON
Smilies are ON
[IMG] code is OFF

Medical and Health forum | Computer Games Reviews | Graphics design forum

Automated OffSite Backup	Shopping Cart Software
RAM Memory Upgrades

Syndicate this forum via XML or simple JavaScript feed

Home | Usercp | Faq | Register