Hi, Eric Sammons: > I believe I see a bug, that was documented for this library in general, in > SLES8. I wonder if this bug has been addressed in current releases of pam > and if this fixes are available for SLES8? I know the bug was either not > introduced into Redhat 7.2 for Z or that it was fixed. I see it only on > my SLES8 install... > > And the Bug is: > > When logging in via ssh I get connection closed. This is due to a missing > home directory or the inability to create one. I have the following entry > in /etc/pam.d/sshd, as I do in Redhat 7.2. > > session required pam_mkhomedir.so skel=/etc/skel umaks=0022 > > When the line is not commented out I receive the connection closed, when > it is removed or commented I am able to log in. (Of course I get dropped > into / until I manually create the home directory.) Are others having > this problem? and again is it addressed in a patch or by some other > means?
pam_mkhomedir.so does not work on ssh with privilege-separation enabled, because then the pam-modules are started with a UID that has no rights to create directories in /home There is a workaround for this. Have a look at http://www.trustsec.de/soft/oss/ The source with instructions in english can be downloaded from http://www.trustsec.de/soft/oss/make_home_dir-1.0.tar.gz I hope this helps. Ciao Frank Kirschner -- trustsec IT solutions GmbH Frank Kirschner [EMAIL PROTECTED] Steinbrunnenstr. 26 tel +49-711-99770652 mobil +49-174-3276289 D-70567 Stuttgart fax +49-711-99770653 http://www.trustsec.de/
