Re: login prompt problem for windows users.

To: Chuck Peters <debian@tuxedo.org>
Cc: debian-isp@lists.debian.org, city-wizards@ccil.org
Subject: Re: login prompt problem for windows users.
From: Gerard MacNeil <macneil@supercity.ns.ca>
Date: Tue, 7 Mar 2000 06:12:07 -0400 (AST)
Message-id: <Pine.LNX.3.96.1000307053723.2219A-100000@g.macns.ns.ca>
In-reply-to: <Pine.LNX.4.10.10003052246280.21466-100000@news.ccil.org>

On Sun, 5 Mar 2000, Chuck Peters wrote:

> 
> I sent the following to Equinox tech support, but I was hoping a kind
> Debian guru can tell me what the problem is.

Guru, not.  User of mgetty/PPP, yes.
> 
> Q07:23:respawn:/sbin/mgetty -D -s 115200 -m '"" ATZ OK"' ttyQ1a7

As long as 'ps' shows the mgetty process running on ttyQ1a7, this will
work.  The values on this line override the settings in
/etc/mgetty/mgetty.config.

> 
> I also asked Mark to dial in with HyperTerminal to confirm that the login
...
> #
> *       -       -       /bin/login @

Yes, this is the /etc/mgetty/login.config that resulted in the prompt.
"Mark" (if he had permissions) would need to fire up PPP from the command
line at this stage.  Since, by default, /etc/ppp is not readable by
others, Mark needs to be assigned special priviliges to do so.

The "routine way" is to let mgetty hand over the authentication procedure
to PPP.  The user does not actually login, which the following log record
indicates:

> 03/04 15:46:53 1a7  waiting for ``_'' ** found **
> 03/04 15:46:55 ##### data dev=ttyQ1a7, pid=12205, caller='none',
> conn='115200', 
> name='', cmd='/usr/sbin/pppd', user='/AutoPPP/'

It is produced as a result of the /etc/mgetty/login.config (as
distributed):
/AutoPPP/ -     a_ppp   /usr/sbin/pppd auth -chap +pap login debug

Everything is working OK so far.  The log record is also you indicator
that mgetty has finished doing it's thing and has handed off the
connection to PPP for authentication.  Time to look at the PPP
config/logs.

1. /etc/ppp/options.ttyQ1a7
Assuming you are dynamically assigning IP addresses, you would want
<server.IP.address>:<assigned.IP.address>

2. /etc/ppp/pap-secrets
As distributed ...
# Every regular user can use PPP and has to use passwords from /etc/passwd
*   *   ""  *

3. /etc/ppp/options
which has your PPP default options.  On distribution there are no DNS
servers specified for obvious reasons.  
# Specify which DNS Servers the incoming Win95 or WinNT Connection should use
# Two Servers can be remotely configured
ms-dns <useable.dns.server>
ms-dns <useable.dns.server>

If those settings are complete and correct, you should see the result of
the attempted login via PPP in /var/log/auth.log 

If /etc/syslog.conf is configured with the line
local2.*         -/var/log/ppp.log 
you have a complete session log in /var/log/ppp.log

Add the keyword directive (on a line by itself)
debug
to /etc/ppp/options.ttyQ1a7 for a detailed report of what PPP is really
doing during the authentication/network protocol negotiation.

Note: I change that 'a_ppp' above to a '-' and fight with PAM to have
mgetty log the PPP connections to the utmp/wtmp files.  This enables
commands like 'who' and 'last' to show results on the dialup servers.  It
looks like the latest version of PPP in the potato distribution has
stopped the fight between mgetty and PAM (not well tested by myself yet).

---------------------------------------------------------------------------
Gerard MacNeil, P. Eng                          macneil@supercity.ns.ca
System Administrator
Supercity Internet Services                     http://www.supercity.ns.ca

Reply to:

Follow-Ups:
- Re: login prompt problem for windows users.
  - From: Chuck Peters <debian@tuxedo.org>

References:
- login prompt problem for windows users.
  - From: Chuck Peters <debian@tuxedo.org>

Prev by Date: Re: InterNIC Name Server is a slave server
Next by Date: Re: logging of pop connections
Previous by thread: Re: login prompt problem for windows users.
Next by thread: Re: login prompt problem for windows users.
Index(es):
- Date
- Thread