1 files changed, 21 insertions, 13 deletions
diff --git a/debian/ssh.pam b/debian/ssh.pam
index f6fbd3ebc..8882053df 100644
--- a/debian/ssh.pam
+++ b/debian/ssh.pam
@@ -1,21 +1,29 @@
-#%PAM-1.0
+# PAM configuration for the Secure Shell service
+# Disallow non-root logins when /etc/nologin exists.
 auth       required     pam_nologin.so
-auth       required     pam_unix.so
+# Read environment variables from /etc/environment and
+# /etc/security/pam_env.conf.
 auth       required     pam_env.so # [1]
-account    required     pam_unix.so
+# Standard Un*x authentication.
+@include common-auth
+# Standard Un*x authorization.
+@include common-account
+# Standard Un*x session setup and teardown.
+@include common-session
-session    required     pam_unix.so
+# Print the message of the day upon successful login.
 session    optional     pam_motd.so # [1]
+# Print the status of the user's mailbox upon successful login.
 session    optional     pam_mail.so standard noenv # [1]
-session    required     pam_limits.so
-password   required     pam_unix.so
+# Set up user limits from /etc/security/limits.conf.
+session    required     pam_limits.so
-# Alternate strength checking for password. Note that this
+# Standard Un*x password updating.
-# requires the libpam-cracklib package to be installed.
+@include common-password
-# You will need to comment out the password line above and
-# uncomment the next two in order to use this.
-#
-# password required       pam_cracklib.so retry=3 minlen=6 difok=3
-# password required       pam_unix.so use_authtok nullok md5

diff --git a/debian/ssh.pam b/debian/ssh.pam index f6fbd3ebc..8882053df 100644 --- a/debian/ssh.pam +++ b/debian/ssh.pam
@@ -1,21 +1,29 @@
1	#%PAM-1.0	1	# PAM configuration for the Secure Shell service
		2
		3	# Disallow non-root logins when /etc/nologin exists.
2	auth required pam_nologin.so	4	auth required pam_nologin.so
3	auth required pam_unix.so	5
		6	# Read environment variables from /etc/environment and
		7	# /etc/security/pam_env.conf.
4	auth required pam_env.so # [1]	8	auth required pam_env.so # [1]
5		9
6	account required pam_unix.so	10	# Standard Un*x authentication.
		11	@include common-auth
		12
		13	# Standard Un*x authorization.
		14	@include common-account
		15
		16	# Standard Un*x session setup and teardown.
		17	@include common-session
7		18
8	session required pam_unix.so	19	# Print the message of the day upon successful login.
9	session optional pam_motd.so # [1]	20	session optional pam_motd.so # [1]
		21
		22	# Print the status of the user's mailbox upon successful login.
10	session optional pam_mail.so standard noenv # [1]	23	session optional pam_mail.so standard noenv # [1]
11	session required pam_limits.so
12		24
13	password required pam_unix.so	25	# Set up user limits from /etc/security/limits.conf.
		26	session required pam_limits.so
14		27
15	# Alternate strength checking for password. Note that this	28	# Standard Un*x password updating.
16	# requires the libpam-cracklib package to be installed.	29	@include common-password
17	# You will need to comment out the password line above and
18	# uncomment the next two in order to use this.
19	#
20	# password required pam_cracklib.so retry=3 minlen=6 difok=3
21	# password required pam_unix.so use_authtok nullok md5