| Summary: | Missing option for ignoring the /etc/nologin file | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | Portable OpenSSH | Reporter: | Tomas Mraz <t8m> | ||||||
| Component: | PAM support | Assignee: | Assigned to nobody <unassigned-bugs> | ||||||
| Status: | CLOSED FIXED | ||||||||
| Severity: | enhancement | CC: | ssh-bugs | ||||||
| Priority: | P2 | Keywords: | needs-release-note | ||||||
| Version: | 4.0p1 | ||||||||
| Hardware: | All | ||||||||
| OS: | Linux | ||||||||
| Bug Depends on: | |||||||||
| Bug Blocks: | 1047 | ||||||||
| Attachments: |
|
||||||||
|
Description
Tomas Mraz
2005-05-25 23:47:13 AEST
Created attachment 922 [details]
Proposed patch
This patch adds a new IgnoreNologin option which implements this enhancement.
I'm not sure sshd needs another knob for this. Perhaps sshd should ignore /etc/nologin and leave it to the PAM modules. The session module could then do whatever it wants WRT the source of the login. I dunno. I would be happy enough with this solution too -> simply switch off nologin checking if PAM is used. I think that ignoring nologin for the PAM case is a good idea, but it is a change that we will have to publicise. Created attachment 981 [details]
Skip nologin check if PAM is enabled.
Comment on attachment 981 [details]
Skip nologin check if PAM is enabled.
ok by me (with release note). maybe we need a README.PAM?
Applied #981, thanks. (I added a needs-release-note keyword). Rather than yet another README, I think we should just add a PAM section to README.platform. Change all RESOLVED bug to CLOSED with the exception of the ones fixed post-4.4. |