[Cooker] LDAP: unable to open a suiteable terminal device

[Stefan van der Eijk]

I'm trying to get X-11 working when logging in with a user account which is stored in LDAP. I can log in using kdm (xdm refuses this). Running non-terminal apps (mozilla and such) works fine. Unfortunatly X refuses to open terminal sessions (the main reason why you haven't seen many package uploads from me recently), see snapshot of konsole. At least konsole gives some sort of error message. With rxvt the terminal comes up and disapears again.

I've run chkauth which sets up the /etc/nsswitch.conf and pam modules... The rest of the config is as documented on the mandrakesecure site.

I do see some difference in the /etc/pam.d/system-auth files between RH8.0 and cooker (see attached files). Can this be causing this?

Which package owns the bug? pam_ldap (doesn't setup the /etc/pam.d/system-auth file), chkconfig, or the installer?

Stefan

<<inline: snapshot1.png>>

#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      /lib/security/pam_env.so
auth        sufficient    /lib/security/pam_unix.so likeauth nullok
auth        sufficient    /lib/security/pam_ldap.so use_first_pass
auth        required      /lib/security/pam_deny.so

account     required      /lib/security/pam_unix.so
account     [default=bad success=ok user_unknown=ignore service_err=ignore 
system_err=ignore] /lib/security/pam_ldap.so

password    required      /lib/security/pam_cracklib.so retry=3 type=
password    sufficient    /lib/security/pam_unix.so nullok use_authtok md5 shadow
password    sufficient    /lib/security/pam_ldap.so use_authtok
password    required      /lib/security/pam_deny.so

session     required      /lib/security/pam_limits.so
session     required      /lib/security/pam_unix.so
session     optional      /lib/security/pam_ldap.so

#%PAM-1.0
 
auth       required       /lib/security/pam_nologin.so
auth       required       /lib/security/pam_env.so
auth       sufficient     /lib/security/pam_ldap.so
auth       sufficient     /lib/security/pam_unix.so likeauth nullok try_first_pass
auth       required       /lib/security/pam_deny.so
 
account    sufficient     /lib/security/pam_ldap.so
account    sufficient     /lib/security/pam_unix.so
account    required       /lib/security/pam_deny.so
 
password   required       /lib/security/pam_cracklib.so retry=3
password  sufficient      /lib/security/pam_ldap.so
password   sufficient     /lib/security/pam_unix.so nullok use_authtok md5 shadow 
use_first_pass
password   required       /lib/security/pam_deny.so
 
session     required      /lib/security/pam_limits.so
session     sufficient      /lib/security/pam_ldap.so
session     sufficient      /lib/security/pam_unix.so
session   required       /lib/security/pam_deny.so

smime.p7s
Description: S/MIME Cryptographic Signature