Re: Getting weird errors on /proc

Wed, 22 Jan 2003 14:23:22 -0800 

Hi,

Comments below...

On Wed, 22 Jan 2003, guy keren wrote:

> can you show the output of the commands 'ls -l /dev/tty' and 'tty' (before
> running 'su -') - and then run 'ls -l' for the tty this last command
> showed you?

[root@galadriel ~]# ls -l /dev/tty
crw-rw-rw-    1 root     root       5,   0 Mar 24  2001 /dev/tty
[root@galadriel ~]# tty
/dev/tty1
[root@galadriel ~]# ls -l /dev/tty1
crw--w----    1 root     tty        4,   1 Jan 23 00:08 /dev/tty1
[root@galadriel ~]#

> here, i see /dev/tty as having r+w permissions for everyone, and the tty
> is having r+w for the owner (root) and group (tty). not sure if this is
> relevant or not - but doesn't hurt to look at it.
>
> i'm also beginning to think that this might be a PAM configuration problem
> - do you have a /etc/pam.d/su file (on redhat 7.3 it exists - what
> distribution are you running?) - and if so - what does it contain? another

RedHat 7.1:

[root@galadriel ~]# cat /etc/pam.d/su
#%PAM-1.0
auth       sufficient   /lib/security/pam_rootok.so
# Uncomment the following line to implicitly trust users in the "wheel" group.
#auth       sufficient   /lib/security/pam_wheel.so trust use_uid
# Uncomment the following line to require a user to be in the "wheel" group.
#auth       required     /lib/security/pam_wheel.so use_uid
auth       required     /lib/security/pam_stack.so service=system-auth
account    required     /lib/security/pam_stack.so service=system-auth
password   required     /lib/security/pam_stack.so service=system-auth
session    required     /lib/security/pam_stack.so service=system-auth
session    optional     /lib/security/pam_xauth.so

> file to check could be /etc/security/console.perms - it defines which
> devices become owned (and thus accesible) by a user that logged on to the
> console. can you check what the '<console>=' lines there shows?

>From /etc/security/console.perms :
<console>=tty[0-9][0-9]* vc/[0-9][0-9]* :[0-9]\.[0-9] :[0-9]

> i'm just shooting in the dark, hopefully one of the shots will hit
> something helpful ;)

        Amit

-- 
Amit Margalit
=============
Better hope the life-inspector doesn't come around while you have your
life in such a mess.


=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]

Reply via email to