1 files changed, 42 insertions, 0 deletions
diff --git a/debian/openssh-server.sshd.pam b/debian/openssh-server.sshd.pam
new file mode 100644
index 000000000..7c0d5417d
--- /dev/null
+++ b/debian/openssh-server.sshd.pam
@@ -0,0 +1,42 @@
+# PAM configuration for the Secure Shell service
+# Read environment variables from /etc/environment and
+# /etc/security/pam_env.conf.
+auth       required     pam_env.so # [1]
+# In Debian 4.0 (etch), locale-related environment variables were moved to
+# /etc/default/locale, so read that as well.
+auth       required     pam_env.so envfile=/etc/default/locale
+# Standard Un*x authentication.
+@include common-auth
+# Disallow non-root logins when /etc/nologin exists.
+account    required     pam_nologin.so
+# Uncomment and edit /etc/security/access.conf if you need to set complex
+# access limits that are hard to express in sshd_config.
+# account  required     pam_access.so
+# Standard Un*x authorization.
+@include common-account
+# Standard Un*x session setup and teardown.
+@include common-session
+# Print the message of the day upon successful login.
+# This includes a dynamically generated part from /run/motd.dynamic
+# and a static (admin-editable) part from /etc/motd.
+session    optional     pam_motd.so  motd=/run/motd.dynamic
+session    optional     pam_motd.so # [1]
+# Print the status of the user's mailbox upon successful login.
+session    optional     pam_mail.so standard noenv # [1]
+# Set up user limits from /etc/security/limits.conf.
+session    required     pam_limits.so
+# Set up SELinux capabilities (need modified pam)
+# session  required     pam_selinux.so multiple
+# Standard Un*x password updating.
+@include common-password

diff --git a/debian/openssh-server.sshd.pam b/debian/openssh-server.sshd.pam new file mode 100644 index 000000000..7c0d5417d --- /dev/null +++ b/debian/openssh-server.sshd.pam
@@ -0,0 +1,42 @@
	1	# PAM configuration for the Secure Shell service
	2
	3	# Read environment variables from /etc/environment and
	4	# /etc/security/pam_env.conf.
	5	auth required pam_env.so # [1]
	6	# In Debian 4.0 (etch), locale-related environment variables were moved to
	7	# /etc/default/locale, so read that as well.
	8	auth required pam_env.so envfile=/etc/default/locale
	9
	10	# Standard Un*x authentication.
	11	@include common-auth
	12
	13	# Disallow non-root logins when /etc/nologin exists.
	14	account required pam_nologin.so
	15
	16	# Uncomment and edit /etc/security/access.conf if you need to set complex
	17	# access limits that are hard to express in sshd_config.
	18	# account required pam_access.so
	19
	20	# Standard Un*x authorization.
	21	@include common-account
	22
	23	# Standard Un*x session setup and teardown.
	24	@include common-session
	25
	26	# Print the message of the day upon successful login.
	27	# This includes a dynamically generated part from /run/motd.dynamic
	28	# and a static (admin-editable) part from /etc/motd.
	29	session optional pam_motd.so motd=/run/motd.dynamic
	30	session optional pam_motd.so # [1]
	31
	32	# Print the status of the user's mailbox upon successful login.
	33	session optional pam_mail.so standard noenv # [1]
	34
	35	# Set up user limits from /etc/security/limits.conf.
	36	session required pam_limits.so
	37
	38	# Set up SELinux capabilities (need modified pam)
	39	# session required pam_selinux.so multiple
	40
	41	# Standard Un*x password updating.
	42	@include common-password