Bug#219377: SSHd: Ignores Pam Lockout When using SSH PubKey Auth

To: sumbit@bugs.debian.org
Subject: Bug#219377: SSHd: Ignores Pam Lockout When using SSH PubKey Auth
From: Phillip Hofmeister <plhofmei@zionlth.org>
Date: Wed, 5 Nov 2003 20:00:20 -0500
Message-id: <[🔎] 20031106010020.GA19243@zionlth.org>
Reply-to: Phillip Hofmeister <plhofmei@zionlth.org>, 219377@bugs.debian.org

Package: ssh
Version: 3.4p1-1.woody.3
Severity: Important

If a ~/.ssh/authorized_key file exists and a user's account is locked
with 'passwd -l' the user can still log in despite the locked account.

A system administrator who uses passwd to lock the account may not be
aware of the authorized_key file and thus fail to effectively lock the
account.
 
-- 
Phillip Hofmeister

PGP/GPG Key:
http://www.zionlth.org/~plhofmei/
wget -O - http://www.zionlth.org/~plhofmei/key.txt | gpg --import
--
Excuse #145: Short leg on process table

Reply to:

Follow-Ups:
- Re: Bug#219377: SSHd: Ignores Pam Lockout When using SSH PubKey Auth
  - From: Jeremy Avnet <brainsik@theory.org>
- Bug#219377: SSHd: Ignores Pam Lockout When using SSH PubKey Auth
  - From: Matthew Vernon <matthew@sel.cam.ac.uk>

Prev by Date: Bug#73611: 73611, do place not refill until you check this site............from Kerry Mcdonough...n...l
Next by Date: Re: Bug#219377: SSHd: Ignores Pam Lockout When using SSH PubKey Auth
Previous by thread: Bug#73611: 73611, do place not refill until you check this site............from Kerry Mcdonough...n...l
Next by thread: Re: Bug#219377: SSHd: Ignores Pam Lockout When using SSH PubKey Auth
Index(es):
- Date
- Thread