From b1cf245735f43f214605eedbf2f0988c82fe8186 Mon Sep 17 00:00:00 2001
From: Yaroslav Tykhiy <ytykhiy@gmail.com>
Date: Fri, 15 Jun 2007 11:33:13 +0000
Subject: [PATCH] Locked out and expired accounts shouldn't be accessible via
 remote mailbox protocols.  Add pam_unix to the `account' function class, too,
 for imap and pop3 to actually implement this policy.

---
 etc/pam.d/imap | 1 +
 etc/pam.d/pop3 | 1 +
 2 files changed, 2 insertions(+)

diff --git a/etc/pam.d/imap b/etc/pam.d/imap
index 6254d1491175..2d5efd0ab72a 100644
--- a/etc/pam.d/imap
+++ b/etc/pam.d/imap
@@ -11,3 +11,4 @@ auth		required	pam_unix.so		no_warn try_first_pass
 
 # account
 #account	required	pam_nologin.so
+account		required	pam_unix.so
diff --git a/etc/pam.d/pop3 b/etc/pam.d/pop3
index c5e93cead30c..c59e39b8bfaa 100644
--- a/etc/pam.d/pop3
+++ b/etc/pam.d/pop3
@@ -11,3 +11,4 @@ auth		required	pam_unix.so		no_warn try_first_pass
 
 # account
 #account	required	pam_nologin.so
+account		required	pam_unix.so