utmp, and pam for ppp

Wed, 19 Apr 2000 13:04:38 -0700 

I just went and got the pppd distribution from redhat version 2.3.11 and
installed via rpm -U.  I wanted to try some pam options with pppd.  Well without
making any config or options changes, my utmp is now broken again.  A who list
no longer shows ppp connections.  I had been using 2.3.8, and I'll go back in
the hopes that it will work.  

A question though about pam.  If I use the "login" option when launching pppd,
is it then going to authenticate using the process in /etc/pam.d/login?  If
there is a /etc/pam.d/ppp file, in which case is it used?  If the login option
is present, does it use everything described in /etc/pam.d/ppp and
/etc/pam.d/login?

The point is, I'd like to have ppp users be able to authenticate via a radius
server.  I have installed the pam_radius authentication module from
www.freeradius.org and placed this line in /etc/pam.d/ppp 
"auth       sufficient  /lib/security/pam_radius_auth.so"
and commented out the other lines.  What happens is, I see a request show up in
the radius daemon logfile that an OK response was given, but pppd dies with the
following:

Apr 19 12:26:50 dialup pppd[11435]: pppd 2.3.11 started by LOGIN, uid 0
Apr 19 12:26:50 dialup pppd[11435]: Using interface ppp0
Apr 19 12:26:50 dialup pppd[11435]: Connect: ppp0 <--> /dev/ttyG0_00
Apr 19 12:26:50 dialup pppd[11435]: Warning - secret file /etc/ppp/pap-secrets
has world and/or group access
Apr 19 12:26:53 dialup pppd[11435]: Warning - secret file /etc/ppp/pap-secrets
has world and/or group access
Apr 19 12:26:53 dialup pppd[11435]: Fatal signal 11
Apr 19 12:26:53 dialup pppd[11435]: tcflush failed: Invalid argument
Apr 19 12:26:53 dialup pppd[11435]: Exit.


Anyway, if anyone is using pppd and is using its "pam awareness" to 
authenticate users I'd love to here from you.  Thanks...
--
Scott Knight, Network Analyst - SSM Health Care, Information Center
email: [EMAIL PROTECTED] + phone: 314.644.7344 + fax: 314.647.1037
"Dad, when you come home with only shattered pieces of your dreams, your
little one can mend them like new with two magic words - 'Hi Dad!'"
- Alan Beck in "Fathers and Sons" -


-
To unsubscribe from this list: send the line "unsubscribe linux-ppp" in
the body of a message to [EMAIL PROTECTED]

Reply via email to