This patch definitely fixes the problem over here with pam 0.76.
Sam, I find your logic to confusing as well:
"IT is wrong for it to call getpwnam because it cannot change the password of an account unless it exists in some system that pam_unix.so understands."
pam_unix understands NIS and that was Tad's point, was it not?
"If getpwnam is used, it might get far enough to try and change the password of an ldap account or something else that simply won't work."
And that's exactly what passwd should do, should it not? This fixes password changes over NIS, and all of the "ssh password expiry not working" bugs along with it. I assume here that LDAP is like NIS, and passwd can actually handle it.
--Pat
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
