1
Index: debian-pkg-pam/modules/pam_unix/pam_unix_acct.c
2
===================================================================
3
--- debian-pkg-pam.orig/modules/pam_unix/pam_unix_acct.c 2009-04-17 11:30:15.000000000 -0700
4
+++ debian-pkg-pam/modules/pam_unix/pam_unix_acct.c 2009-04-17 11:31:25.000000000 -0700
6
_make_remark(pamh, ctrl, PAM_ERROR_MSG,
7
_("Your account has expired; please contact your system administrator"));
9
+ case PAM_AUTHTOK_ERR:
10
+ retval = PAM_SUCCESS;
14
pam_syslog(pamh, LOG_DEBUG,
15
Index: debian-pkg-pam/modules/pam_unix/passverify.c
16
===================================================================
17
--- debian-pkg-pam.orig/modules/pam_unix/passverify.c 2009-04-17 11:30:07.000000000 -0700
18
+++ debian-pkg-pam/modules/pam_unix/passverify.c 2009-04-17 11:30:59.000000000 -0700
20
*daysleft = (int)((spent->sp_lstchg + spent->sp_max) - curdays);
21
D(("warn before expiry"));
23
+ if ((curdays - spent->sp_lstchg < spent->sp_min)
24
+ && (spent->sp_min != -1)) {
26
+ * The last password change was too recent. This error will be ignored
27
+ * if no password change is attempted.
29
+ D(("password change too recent"));
30
+ return PAM_AUTHTOK_ERR;
36
/* passwd/salt conversion macros */