rcolebaugh / rpms / openssh

Forked from rpms/openssh 2 years ago
Clone

Blame SOURCES/openssh-6.6p1-log-usepam-no.patch

017ff1
diff --git a/sshd.c b/sshd.c
017ff1
index a7b8b6a..24ab272 100644
017ff1
--- a/sshd.c
017ff1
+++ b/sshd.c
017ff1
@@ -1620,6 +1620,10 @@ main(int ac, char **av)
f09e2e
 	parse_server_config(&options, rexeced_flag ? "rexec" : config_file_name,
f09e2e
 	    &cfg, NULL);
f09e2e
 
f09e2e
+	/* 'UsePAM no' is not supported in Red Hat Enterprise Linux */
f09e2e
+	if (! options.use_pam)
f09e2e
+		logit("WARNING: 'UsePAM no' is not supported in Red Hat Enterprise Linux and may cause several problems.");
f09e2e
+
f09e2e
 	seed_rng();
f09e2e
 
f09e2e
 	/* Fill in default values for those options not explicitly set. */
017ff1
diff --git a/sshd_config b/sshd_config
017ff1
index 36cb27a..c1b7c03 100644
017ff1
--- a/sshd_config
017ff1
+++ b/sshd_config
017ff1
@@ -101,6 +101,8 @@ GSSAPICleanupCredentials no
f09e2e
 # If you just want the PAM account and session checks to run without
f09e2e
 # PAM authentication, then enable this but set PasswordAuthentication
f09e2e
 # and ChallengeResponseAuthentication to 'no'.
f09e2e
+# WARNING: 'UsePAM no' is not supported in Red Hat Enterprise Linux and may cause several
f09e2e
+# problems.
f09e2e
 UsePAM yes
f09e2e
 
017ff1
 #AllowAgentForwarding yes