Package: libpam-modules Version: 1.1.3-7.1 Severity: normal Tags: d-i upstream
Dear Maintainer, I discovered that pam_unix does not respect on account aging that is turned off on a certain account. Manual (shadow(5)) says about 3rd (last password changed) field: "An empty field means that password aging features are disabled." When I erease that filed 'passwd -S' reports 12/31/1969 - it seems ok, since empty date and day fields considered to be -1. But when I login with impacted account, it does not seem to interpret this value as special and continuing to respect on min days, max days fields. I think "password aging" mentioned above in manual means there is no password expirity nor minimum age. As I observed, vassverify.c does the lack. -- System Information: Debian Release: 7.9 APT prefers oldstable APT policy: (500, 'oldstable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/2 CPU cores) Locale: LANG=hu_HU.UTF-8, LC_CTYPE=hu_HU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libpam-modules depends on: ii debconf [debconf-2.0] 1.5.49 ii libc6 2.13-38+deb7u10 ii libdb5.1 5.1.29-5 ii libpam-modules-bin 1.1.3-7.1 ii libpam0g 1.1.3-7.1 ii libselinux1 2.1.9-5 libpam-modules recommends no packages. libpam-modules suggests no packages. -- Configuration Files: /etc/security/access.conf changed [not included] /etc/security/limits.conf changed [not included] -- debconf information excluded