[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

libnss-ldap & woody & openssh, disconnect after login

this is odd.

I have been deploying LDAP at my company recently, and started going
a bit deeper, this time on a woody machine trying to get libnss-ldap and
libpam-ldap on a woody system.

I only plan to use PAM/LDAP for passwd. I have not done any
special pam configuration.

The issue is when I ssh in, using an account that is in /etc/passwd,
with libnss-ldap installed, it authenticates me, then immediately disconnects.
there are no errors, even if I do RSA authentication it disconnects me,
really weird:

aphro@fury:~$ ssh -l admin -C gopher -1
Enter passphrase for RSA key '/home/aphro/.ssh/identity':
Last login: Wed Mar 20 20:36:09 2002 from fury.mydomain.com on pts/4
Linux gopher 2.2.19 #1 SMP Fri Oct 5 10:53:37 PDT 2001 i686 unknown

Most of the programs included with the Debian GNU/Linux system are
freely redistributable; the exact distribution terms for each program
are described in the individual files in /usr/share/doc/*/copyright

Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Received disconnect from Command terminated on signal 11.

I don't even have pam_ldap installed(yet, I had it installed a few minutes
ago but removed it).

If I remove libnss-ldap, it does not disconnect me like this. from my syslog

Mar 20 20:40:19 gopher sshd[7483]: Accepted rsa for admin from port 2635
Mar 20 20:40:19 gopher sshd[7483]: Disconnecting: Command terminated on
signal 11.

What is weirder. is i am using the SAME package(recompiled for
potato) on a potato system and its working fine(using LDAP to authenticate
IMAP/POP logins with cyrus), and has been for a while.  I am not
using PAM with SSH there either, only using it for CYRUS.

I'm at a loss ....it logs me in, and just disconnects for no apparent reason.
I started SSH on another port and told it not to fork to background and
increased debugging and it gave no errors either, just disconnect
on signal 11.

and to fix it, all i gotta do is dpkg -r libnss-ldap ..don't have to restart
nscd, or anything and i can immediately login again.

I'd like to get this working, for my samba/ldap password sync.

any ideas?



Reply to: