Use PAM for sshd Motd

[bshephar]

This change switches the method we use to display the motd. Previously, we used PrintMotd in the sshd config. RHEL9 configures mod_motd.so in PAM, and as such the motd will be duplicated when using PrintMotd. To avoid this, we can configure the motd via PAM.

Related: https://bugzilla.redhat.com/show_bug.cgi?id=2329414

[softwarefactory-project-zuul]

Build failed (check pipeline). Post recheck (without leading slash)
to rerun all jobs. Make sure the failure cause has been resolved before
you rerun jobs.

https://softwarefactory-project.io/zuul/t/rdoproject.org/buildset/6bded9cfb3a948f58207a59bfe493f24

✔️ openstack-k8s-operators-content-provider SUCCESS in 43m 55s
❌ podified-multinode-edpm-deployment-crc FAILURE in 21m 19s
❌ cifmw-crc-podified-edpm-baremetal FAILURE in 19m 13s
❌ edpm-ansible-tempest-multinode FAILURE in 24m 26s
❌ edpm-ansible-molecule-edpm_bootstrap FAILURE in 4m 47s
✔️ edpm-ansible-molecule-edpm_podman SUCCESS in 6m 24s
✔️ edpm-ansible-molecule-edpm_module_load SUCCESS in 4m 54s
✔️ edpm-ansible-molecule-edpm_kernel SUCCESS in 7m 11s
✔️ edpm-ansible-molecule-edpm_libvirt SUCCESS in 7m 46s
❌ edpm-ansible-molecule-edpm_nova FAILURE in 4m 58s
✔️ edpm-ansible-molecule-edpm_frr SUCCESS in 10m 37s
✔️ edpm-ansible-molecule-edpm_iscsid SUCCESS in 4m 48s
❌ edpm-ansible-molecule-edpm_ovn_bgp_agent FAILURE in 4m 53s
❌ edpm-ansible-molecule-edpm_ovs FAILURE in 9m 31s
✔️ edpm-ansible-molecule-edpm_tripleo_cleanup SUCCESS in 4m 21s
❌ edpm-ansible-molecule-edpm_tuned FAILURE in 5m 29s
❌ edpm-ansible-molecule-edpm_telemetry_power_monitoring FAILURE in 5m 01s
❌ edpm-ansible-molecule-edpm_update FAILURE in 5m 12s
❌ adoption-standalone-to-crc-ceph-provider RETRY_LIMIT in 29m 43s

[bshephar]

recheck

[softwarefactory-project-zuul]

Build failed (check pipeline). Post recheck (without leading slash)
to rerun all jobs. Make sure the failure cause has been resolved before
you rerun jobs.

https://softwarefactory-project.io/zuul/t/rdoproject.org/buildset/c4d385480a76402190baf75cebae0d3c

✔️ openstack-k8s-operators-content-provider SUCCESS in 3h 31m 35s
❌ podified-multinode-edpm-deployment-crc POST_FAILURE in 1h 17m 12s
✔️ cifmw-crc-podified-edpm-baremetal SUCCESS in 1h 21m 51s
✔️ edpm-ansible-tempest-multinode SUCCESS in 1h 42m 09s
✔️ edpm-ansible-molecule-edpm_bootstrap SUCCESS in 5m 45s
✔️ edpm-ansible-molecule-edpm_podman SUCCESS in 6m 01s
✔️ edpm-ansible-molecule-edpm_module_load SUCCESS in 4m 48s
✔️ edpm-ansible-molecule-edpm_kernel SUCCESS in 9m 55s
✔️ edpm-ansible-molecule-edpm_libvirt SUCCESS in 9m 11s
✔️ edpm-ansible-molecule-edpm_nova SUCCESS in 10m 36s
✔️ edpm-ansible-molecule-edpm_frr SUCCESS in 6m 54s
✔️ edpm-ansible-molecule-edpm_iscsid SUCCESS in 4m 41s
✔️ edpm-ansible-molecule-edpm_ovn_bgp_agent SUCCESS in 7m 35s
✔️ edpm-ansible-molecule-edpm_ovs SUCCESS in 12m 42s
✔️ edpm-ansible-molecule-edpm_tripleo_cleanup SUCCESS in 4m 06s
✔️ edpm-ansible-molecule-edpm_tuned SUCCESS in 5m 52s
✔️ edpm-ansible-molecule-edpm_telemetry_power_monitoring SUCCESS in 6m 50s
✔️ edpm-ansible-molecule-edpm_update SUCCESS in 6m 08s
✔️ adoption-standalone-to-crc-ceph-provider SUCCESS in 3h 19m 41s

[slagle]

LGTM, i already have the line in this file in my RHEL 9.2 edpm node, but without the motd=/etc/motd, that is the default, so that part is likely not needed. But, I'm fine either way.

[bshephar]

Yeah, so the issue this solves is that PrintMotd defaults to yes in sshd_config. So if we don't explicitly set it to no then the motd is duplicated.

Explicitly telling pam the exact file to use results in the single message being printed instead of the duplication. But, I did some more digging to make sure I was answering the questions on the BZ accurately, and I actually think that this might be a better solution to the problem:
#838

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: bshephar, slagle

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [bshephar,slagle]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[fao89]

recheck

[softwarefactory-project-zuul]

Build failed (check pipeline). Post recheck (without leading slash)
to rerun all jobs. Make sure the failure cause has been resolved before
you rerun jobs.

https://softwarefactory-project.io/zuul/t/rdoproject.org/buildset/8f4d958f92504dedbc33356a59b54839

✔️ openstack-k8s-operators-content-provider SUCCESS in 3h 32m 51s
✔️ podified-multinode-edpm-deployment-crc SUCCESS in 1h 23m 17s
❌ cifmw-crc-podified-edpm-baremetal RETRY_LIMIT in 20m 36s
✔️ edpm-ansible-tempest-multinode SUCCESS in 1h 35m 56s
✔️ edpm-ansible-molecule-edpm_bootstrap SUCCESS in 6m 01s
✔️ edpm-ansible-molecule-edpm_podman SUCCESS in 6m 01s
✔️ edpm-ansible-molecule-edpm_module_load SUCCESS in 4m 47s
✔️ edpm-ansible-molecule-edpm_kernel SUCCESS in 9m 27s
✔️ edpm-ansible-molecule-edpm_libvirt SUCCESS in 10m 12s
✔️ edpm-ansible-molecule-edpm_nova SUCCESS in 8m 54s
✔️ edpm-ansible-molecule-edpm_frr SUCCESS in 7m 19s
✔️ edpm-ansible-molecule-edpm_iscsid SUCCESS in 4m 44s
✔️ edpm-ansible-molecule-edpm_ovn_bgp_agent SUCCESS in 7m 41s
✔️ edpm-ansible-molecule-edpm_ovs SUCCESS in 12m 44s
✔️ edpm-ansible-molecule-edpm_tripleo_cleanup SUCCESS in 4m 04s
✔️ edpm-ansible-molecule-edpm_tuned SUCCESS in 5m 53s
✔️ edpm-ansible-molecule-edpm_telemetry_power_monitoring SUCCESS in 7m 52s
✔️ edpm-ansible-molecule-edpm_update SUCCESS in 6m 12s
✔️ adoption-standalone-to-crc-ceph-provider SUCCESS in 3h 19m 45s

[slagle]

/override rdoproject.org/github-check

[openshift-ci]

@slagle: Overrode contexts on behalf of slagle: rdoproject.org/github-check

In response to this:

/override rdoproject.org/github-check

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.