Hi, On Mon, Apr 04, 2005 at 01:39:33PM +0200, Cajus Pollmeier wrote: > Hi! > > I've a strange problem here while working localy on the machine named "lama". > Everytime when a friend logs in (via SSH), I'm loosing my token (ID 1011) and > get his token (ID 1006) instead. I've gained permissions to his data in this > case, while I've lost access to my own stuff. For this case I left a shell > open which is just used to enter an "aklog" again:
What does the 'id -G' command show in 1. your session? 2. your friend's ssh-session? _Maybe_ you restarted/started your ssh-server in your own PAG. Example: <wrong> [EMAIL PROTECTED]:~$ su password: [EMAIL PROTECTED]:~# /etc/init.d/ssh stop [EMAIL PROTECTED]:~# /etc/init.d/ssh start [EMAIL PROTECTED]:~# exit [EMAIL PROTECTED]:~$ </wrong> The ssh-deamon inherits your PAG (process authentication group). It can be avoided by using 'unpagsh' before running the ssh-daemon: <correct> [EMAIL PROTECTED]:~$ su password: [EMAIL PROTECTED]:~# unpagsh [EMAIL PROTECTED]:~# /etc/init.d/ssh stop [EMAIL PROTECTED]:~# /etc/init.d/ssh start [EMAIL PROTECTED]:~# exit [EMAIL PROTECTED]:~$ </correct> hth Regards, Frank _______________________________________________ OpenAFS-info mailing list [email protected] https://lists.openafs.org/mailman/listinfo/openafs-info
