Calling pam_chauthtok() isn't really needed since

an FTP user has no chance to change password anyway. Submitted by: Nick Leuta
2004-11-22 11:02:42 +00:00 · 2004-11-22 11:02:42 +00:00 · 4cbc4ad644
commit 4cbc4ad644
parent e897216f45
1 changed files with 3 additions and 7 deletions
--- a/libexec/ftpd/ftpd.c
+++ b/libexec/ftpd/ftpd.c
@ -1297,13 +1297,9 @@ auth_pam(struct passwd **ppw, const char *pass)

 	if (rval == 0) {
 		e = pam_acct_mgmt(pamh, 0);
-		if (e == PAM_NEW_AUTHTOK_REQD) {
-			e = pam_chauthtok(pamh, PAM_CHANGE_EXPIRED_AUTHTOK);
-			if (e != PAM_SUCCESS) {
-				syslog(LOG_ERR, "pam_chauthtok: %s", pam_strerror(pamh, e));
-				rval = 1;
-			}
-		} else if (e != PAM_SUCCESS) {
+		if (e != PAM_SUCCESS) {
+			syslog(LOG_ERR, "pam_acct_mgmt: %s",
+						pam_strerror(pamh, e));
 			rval = 1;
 		}
 	}