Update KerberosV task to note that pam_kerberosV bugs seem largely to have

been resolved. Some still remain regarding OpenSSH/OpenPAM. Add a task item relating to the lastlog permission denied warning from OpenSSH, and set ownership to DES.
svn path=/www/; revision=14963
2002-11-20 18:12:09 +00:00 · 2002-11-20 18:12:09 +00:00 · 5dedbf0d4b · 2020-12-08 03:00:23 +00:00
commit 5dedbf0d4b
parent 104f7d424e
1 changed files with 14 additions and 2 deletions
--- a/en/releases/5.0R/todo.sgml
+++ b/en/releases/5.0R/todo.sgml
@ -1,7 +1,7 @@
 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" [
 <!ENTITY base CDATA "../..">
 <!ENTITY email 'freebsd-qa'>
-<!ENTITY date "$FreeBSD: www/en/releases/5.0R/todo.sgml,v 1.27 2002/11/20 18:03:05 rwatson Exp $">
+<!ENTITY date "$FreeBSD: www/en/releases/5.0R/todo.sgml,v 1.28 2002/11/20 18:05:25 rwatson Exp $">
 <!ENTITY title "FreeBSD 5.0 Open Issues">
 <!ENTITY % includes SYSTEM "../../includes.sgml"> %includes;
 ]>
@ -178,7 +178,8 @@
  <td>KerberosV, OpenSSH, and PAM</td>
    <td>In progress</td>
    <td>markm@FreeBSD.org, nectar@FreeBSD.org</td>
-    <td>KerberosV appears not to currently work with OpenSSH using PAM.</td>
+    <td>KerberosV appears not to currently work with OpenSSH using PAM.
+      Bugs relating to pam_kerberosV have in large part been fixed.</td>
  </tr>

  <tr>
@ -246,6 +247,17 @@
    for tirpc unix domain socket transport naming, to sync to NetBSD.</td>
  </tr>

+  <tr>
+  <td>OpenSSH reports lastlog warning</td>
+  <td>--</td>
+  <td>des@FreeBSD.org</td>
+  <td>OpenSSH appears to invoke the PAM session code in the wrong process
+    when running with privsep, resulting in warnings of the form
+    "Nov 20 18:08:55 u60 sshd[2002]: /var/log/lastlog: Permission denied".
+    This may be a bug that requires reworking OpenSSH to work properly
+    with PAM, but should be resolved in some form for the release.</td>
+  </tr>
+
 </table>

    &footer;