https://bugzilla.novell.com/show_bug.cgi?id=217369 mc@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |security-team@suse.de Info Provider|mc@novell.com |security-team@suse.de ------- Comment #5 from mc@novell.com 2006-11-21 06:30 MST ------- I am sure that it will not happen if UsePAM is no (test will take some time because I currently make a new installation of my test machine). But the question is what about a mixed enviroment. A company has a kerberized network and an adminitrator login from home without kerberos(gssapi). He wants to use pam (pam_krb5) to auth. Then he is in the company network has a ticket (from pam_krb5) and wants to ssh to another host with gssapi. The other host calls now pam_krb5 account module without the auth module before. This is forbidden and result in an error. => gssapi auth does not work. My understanding is "when gssapi is selected then only gssapi will be done" and not parts of a pam authentication. Maybe we ask the security-team if this is a Bug or a feature. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.