Re: pam debugging

To: Alex Mestiashvili <alex@biotec.tu-dresden.de>
Cc: debian-user@lists.debian.org
Subject: Re: pam debugging
From: Cedric Gava <gava.c@free.fr>
Date: Tue, 12 May 2015 14:47:32 +0200
Message-id: <[🔎] E9EBEB0B-2361-4CB8-9B95-B2ADEEE56788@free.fr>
In-reply-to: <[🔎] 5551EEC6.5080801@biotec.tu-dresden.de>
References: <[🔎] A23AD882-8767-491A-9AFD-4922554D1D50@free.fr> <[🔎] 5551EEC6.5080801@biotec.tu-dresden.de>

Alex, thank you for your answer, which did not helped me at all but committed me to verify once again this point.

Yes I looked before at auth.log, but since the auth.log tells the same thing whether I activate debug in pam.d/common-auth or not (see below), I decided to ask here.

log WITHOUT ACTIVATING debug when I  auth via ssh :
May 12 14:35:49 wheezy-test sshd[20586]: Accepted password for root from 192.168.56.100 port 37456 ssh2
May 12 14:35:49 wheezy-test sshd[20586]: pam_unix(sshd:session): session opened for user root by (uid=0)

log WITH debug ACTIVATED
May 12 14:37:35 wheezy-test sshd[20637]: Accepted password for root from 192.168.56.100 port 37457 ssh2
May 12 14:37:35 wheezy-test sshd[20637]: pam_unix(sshd:session): session opened for user root by (uid=0)

So, the difference between debug activated or not in auth.log is not obviously different.

moreover, since I tried to catch every debug level message in /var/log/debug.log, I hoped that debug messages would go there too…

Did I still ask stupid question ? Please let me sleep tonight less stupid I woke up this morning.

Cedric


 Alex Mestiashvili <alex@biotec.tu-dresden.de> a écrit :

> On 05/11/2015 06:18 PM, Cedric Gava wrote:
>> Hello
>> 
>> I’am trying to set up pam/ldap authentication on Wheezy, and struggling for many days on these topics since I knew nothing from both of them before beginning (I know more know ;)
>> 
>> To better understand what’s going on (I have ldap credential issue), I tried to activate debug in pam, like, for example :
>> 
>> /etc/pam.d/common-auth	
>> auth    [success=2 default=ignore]      pam_unix.so nullok_secure debug
>> auth    [success=1 default=ignore]      pam_ldap.so use_first_pass debug
>> 
>> /etc/rsyslog.conf
>> *.=debug -/var/log/debug
>> tested with :
>> $ logger -p auth.debug test
>> OK rsyslog.conf seems ok
>> 
>> I TESTED THEN the pam debug messages
>> I tried both :
>> $ pamtester login cedric authenticate
>> and login out, login in from sshd or tty, NOTHING is visible in /var/log/debug
>> 
>> 
> 
> Stupid question,  did you look in /var/log/auth.log ?
> AFAIK the default location for pam logs..
> 
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> Archive: [🔎] 5551EEC6.5080801@biotec.tu-dresden.de">https://lists.debian.org/[🔎] 5551EEC6.5080801@biotec.tu-dresden.de
>

Reply to:

Follow-Ups:
- Re: pam debugging
  - From: Alex Mestiashvili <alex@biotec.tu-dresden.de>

References:
- pam debugging
  - From: Cedric Gava <gava.c@free.fr>
- Re: pam debugging
  - From: Alex Mestiashvili <alex@biotec.tu-dresden.de>

Prev by Date: Re: pam debugging
Next by Date: Re: Running cool and silent
Previous by thread: Re: pam debugging
Next by thread: Re: pam debugging
Index(es):
- Date
- Thread