Bug#93200: Debian bug #139579: fixed upstream (+info)
Hi.
I've just commited an upstream fix for this "ssh: PermitEmptyPasswords
seems to have no effect" for the keyboard-interactive case. (This is
upstream's auth-pam.c 1.109 -> 1.110).
One thing I did find is that the pam_unix.so flag "nullok" overrides
the PAM_DISALLOW_NULL_AUTHTOK flag passed to the pam_authenticate()
function. This appears to be a bug in PAM (the right behaviour would
seem to be the *least* permissive of the two).
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
Reply to: