pam_python Doesn't work with pam-python 1.0.7

Doesn't work with pam-python 1.0.7

Open moschlar opened this issue 4 years ago • 3 comments

Due to a security fix in pam-python 1.0.7 (https://nvd.nist.gov/vuln/detail/CVE-2019-16729), the Python interpreter can't find installed third-party packages anymore (like requests and the like).

This has already been discussed in the community forum: https://community.privacyidea.org/t/ssh-client-and-pam-module-on-centos-7/

A proposed fix by the author (https://sourceforge.net/p/pam-python/tickets/8/#0001/7b91/dea5/0aab/32b1/34ac/8881/b469) would be to add

import site
site.main()

But maybe there is a nicer solution...

Jul 02 '20 06:07 moschlar

+1 - I needed this on Debian too.

Feb 18 '22 12:02 gregharvey

Actually, this fixed things on Debian Buster, but for Debian Bullseye it seems this is just entirely broken. The requests lib isn't there, and they've pulled the python-requests package - along with most other Python 2 packages. So this basically cannot work. What a pity.

Feb 18 '22 12:02 gregharvey

Debian Bullseye basically doesn't ship most Python 2 packages anymore, but apparently pam_python and this module are not made compatible with Python 3 yet, so - yes, what a pity!

Feb 18 '22 13:02 moschlar

pam_python pam_python copied to clipboard

Doesn't work with pam-python 1.0.7

pam_python
pam_python copied to clipboard