PAM

To: debian-user@lists.debian.org
Subject: PAM
From: "Martin Clarke" <martin.clarke7@mail.dcu.ie>
Date: Sat, 29 Jun 2002 15:52:52 +0100
Message-id: <[🔎] 3CC55D7B0002F12F@hawk.dcu.ie>

recently whille messin around with stuff in my pam.d dir i screwed stuff
up...very stupidly i know...i dont have a backup copy of those config file
which i thought i did. So anyway to try and recover I used the technique
i saw int he pam docs packages...mv pam.d pam.d.orig and create and new
pam.d with one "other" file inside and use default setups for that..logins
worked ok but su was screwy and wouldnt work at all! so i set up an su and
now root can su to whoever without passwords. users have access to su as
members of wheel group but the actual su will not work:
eg su
i enter the correct password(i am SURE) it is
and i get a crazy error message like: authentication services cannot retrive
authenticaon info
if i enter the wrong passwd i just get an authenticaton failure message..any
ideas??
sample auth.log and config files below
cheers
martin
----------------------------------------------
Jun 29 15:23:23 IscArIoT su[791]: + tty3 mclark-root
Jun 29 15:23:23 IscArIoT su[791]: bad group ID `0' for user `root': Operation
not permitted
Jun 29 15:27:23 IscArIoT PAM-warn[798]: service: su [on terminal: tty3]
Jun 29 15:27:23 IscArIoT PAM-warn[798]: user: (uid=1000) -> root [remote:
mclark@?nowhere]
Jun 29 15:27:23 IscArIoT PAM-warn[798]: service: su [on terminal: tty3]
Jun 29 15:27:23 IscArIoT PAM-warn[798]: user: (uid=1000) -> root [remote:
mclark@?nowhere]
Jun 29 15:27:23 IscArIoT su[798]: pam_acct_mgmt: Authentication service
cannot retrieve authentication info.
Jun 29 15:27:23 IscArIoT su[798]: - tty3 mclark-root
Jun 29 15:27:48 IscArIoT PAM-warn[804]: service: su [on terminal: tty3]
Jun 29 15:27:48 IscArIoT PAM-warn[804]: user: (uid=1000) -> root [remote:
mclark@?nowhere]
Jun 29 15:27:48 IscArIoT PAM-warn[804]: service: su [on terminal: tty3]
Jun 29 15:27:48 IscArIoT PAM-warn[804]: user: (uid=1000) -> root [remote:
mclark@?nowhere]
Jun 29 15:27:48 IscArIoT su[804]: pam_acct_mgmt: Authentication service
cannot retrieve authentication info.
-----------------------------------------------------------
OTHER:
auth     required pam_unix_auth.so
auth     required pam_warn.so
account  required pam_unix_acct.so
account  required pam_warn.so
password required pam_unix_passwd.so
password required pam_warn.so
session  required pam_unix_session.so
session  required pam_warn.so
-----------------------------------------------------------
SU:
auth sufficient pam_rootok.so
auth required pam_wheel.so
auth required pam_unix_auth.so audit
auth required pam_warn.so
-----------------------------------------------------------








--
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Prev by Date: RE: api calls
Next by Date: Where to find KDE docbook DTD
Previous by thread: Help needed with qt3...
Next by thread: Where to find KDE docbook DTD
Index(es):
- Date
- Thread