On Sat, Apr 14, 2007 at 07:57:54PM -0700, Public Mailbox wrote: > Here is the relevant snippet of /etc/pam.d/ssh:
> # Read environment variables from /etc/environment and > # /etc/security/pam_env.conf. > auth required pam_env.so # [1] > # In Debian 4.0 (etch), locale-related environment variables were > moved to > # /etc/default/locale, so read that as well. > auth required pam_env.so envfile=/etc/default/locale > # Standard Un*x authentication. > @include common-auth > common-auth consists of the following: > auth required pam_unix.so nullok > and /etc/security/pam_env.conf doesn't have any uncommented lines. Ok, well, duplicating this config and adding a test user with an empty password field in /etc/shadow, I'm not able to reproduce the problem you've described. I have the following relevant settings in /etc/ssh/sshd_config: UsePrivilegeSeparation yes PermitEmptyPasswords yes ChallengeResponseAuthentication no PasswordAuthentication yes GSSAPIAuthentication yes GSSAPIKeyExchange yes UsePAM yes Please indicate which of these settings differ in your config, or send a copy of your sshd_config. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. [EMAIL PROTECTED] http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]