Hi,
I disabled a few user account on my 5.1 by letting them expire yesterday
(is that the correct way)? When testing today that the account are
indeed unavailable, this is what I get:
>
> Checking the /etc/master.passwd file:
> Login koles has expired.
> Login lubosek has expired.
# su - expireduser
su: approval failure: Undefined error: 0
So the account is indeed disabled, but it doesn't
seem right that su gets an 'undefined error'. Or is there
a defined way to report 'this is a valid user acount,
except it has expired'? Or is there really no difference
between an expired account and a nonexistent account?
Trying to ssh to the account remotely results in
Jul 9 12:38:26 www sshd[18274]: Failed password for invalid user $USER from ...
On the other hand, there is nothing in /var/log/authlog about the bad su.
Jan
