[Date Prev][Date Next] [Chronological] [Thread] [Top]

Change password without asking old password

Hi all,

I set up the openldap+libpam-ldap to have an
authentication via ldap. The log in process works beatitfully but the
password changing (with "passwd") allows the users to change his/her
password without asking the old password. Anybody has ideas?

$ cat /etc/pam.d/passwd | grep -v ^#

auth       sufficient   pam_ldap.so
auth       required     pam_unix.so

account    sufficient   pam_ldap.so
account    required     pam_unix.so

password   sufficient   pam_ldap.so
password   required   pam_unix.so nullok obscure min=4 max=8

If I use ldappasswd then everything works fine.

The best things in life are free. - B.G. DeSilva (1927)
Ott Pattara Kiatisevi 				   T L W G
M.Sc. INFOTECH Student, Stuttgart, Germany	http://linux.thai.net/