[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: id gives conflicting results

Juha Jäykkä wrote:
> Hi!
> I was digging around a problem with a user not being able to access his
> cdrom even though the user belongs to group cdrom (as reported by "groups
> user") and the cdrom device is mode rw- group cdrom. It was immediately
> clear this is a libnss-ldap issue, since the problem disappears if I add
> the user to local (i.e. /etc/group) cdrom group and remove ldap from
> group-line in /etc/nsswitch.conf.
> Now, what I am concerned about is this. I am logged in as user "juhaj" and
> ~> id
> uid=1000(juhaj) gid=1000(juhaj)
> groups=33731,37810,4(adm),4(adm),24(cdrom),24(cdrom),29(audio),29(audio),40(src),40(src),44(video),1000(juhaj),33731,37809
> ~> id juhaj
> uid=1000(juhaj) gid=1000(juhaj)
> groups=1000(juhaj),4(adm),24(cdrom),29(audio),40(src),44(video)
The issue is with pam_group and /etc/security/group.conf.

It adds people logging in to certain groups for desktop purposes or what
not.  Pretty much id tells you what groups the process is a part of
while id <user> tells you what groups are listed in /etc/group.  Or
thats my understanding of this.

Scott Henson
LCSEE Systems Staff
WVU MAE Undergraduate
Ubuntu User

Reply to: