Fwd: Disabling sshd's account lock check

Actually, I take my previous statement back. I can only get public  
key auth to work. Password auth fails, telling me I have the wrong  
password (in /var/log/messages).

--
Brian McNally


Begin forwarded message:

> From: Brian McNally <bmcnally@u.washington.edu>
> Date: November 29, 2006 12:30:24 PM PST
> To: Lamont Granquist <lamont@scriptkiddie.org>
> Subject: Re: Disabling sshd's account lock check
>
> Fantastic, modifying LOCKED_PASSWD_PREFIX seems to have done the  
> trick. Much thanks.
>
> --
> Brian McNally
>
>
> On Nov 29, 2006, at 11:51 AM, Lamont Granquist wrote:
>
> > check the values of LOCKED_PASSWD_PREFIX, LOCKED_PASSWD_STRING and  
> > LOCKED_PASSWD_SUBSTR in config.h -- depending on your platform and  
> > how openssh was compiled you may have different values defined there.
> >
> > if you want to bypass this for a single user, just use a string in  
> > the passwd field which ssh isn't compiled to match.
> >
> > otherwise make sure all those are not defined in config.h and  
> > recompile ssh (doesn't seem to be an autoconf option to tweak this)
> >
> > On Tue, 28 Nov 2006, Brian McNally wrote:
> > > Versions of sshd >3.8 check to see if a user's account is locked  
> > > when authenticating them. Is there a way to disable this  
> > > "feature", either at compile time or with an undocumented option  
> > > in sshd_config?
> > >
> > > Thanks,
> > >
> > > --
> > > Brian McNally