[OpenAFS] PAM-AFS isn't working with openssh-3.7.1p1 (sun4x_58)
Charles Clancy
security@xauth.net
Fri, 26 Sep 2003 10:03:09 -0500 (CDT)
> I don't think that this is the only problem. I had a look at the ssh
> sources and made a posting yesterday with a patch. It fixes the problems
> i found with my combination of pam_krb5 and pam_aklog.
>
> What happens is that the authentication thread is executed in a separate
> thread where only pam_authenticate() is executed. The thread exits and
> pam_setcred() does not get executed in the same thread. Environment
> variables do not get stored as they should.
Then it may be sufficient to just add the "set-token" option to
pam_afs.so. That does all the setcred features during authenticate.
[ t. charles clancy ]--[ tcc@umd.edu ]--[ www.wam.umd.edu/~tcc ]
[ computer science ]----[ university of maryland, college park ]