I've received a few reports from teh field that password aging with ssh in 4.7 and 4.8RC is broken.
Is there anyone out there that is using passwork expiry and ssh? Who's the expert? The method being used: Define a class called the shellusers class in the /etc/login.conf. Run cap_mkdb on the login.conf file Go into the master.passwd file and expired an account. According to our clients, after the account is expired SSH on 4.7 disallows any logins. It is supposed to allow your connection and then just force you to change your password. On 4.8-RC ssh seems to be totally ignoring the fact that the password is expired. "login" on the other hand acts as expected. Is this the correct procedure? (If not, what IS the correct proceedure? Where is password expiry documented? (man login.conf and man passwd seem the best references so far..). How does PAM come into this? The older version of SSH we have on the 4.4 boxes works with the same password expiration set up without any problems. To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
