subject:"PAM broke\?"

Re: PAM broke?

2002-04-16 Thread Dag-Erling Smorgrav


Benno Rice [EMAIL PROTECTED] writes:
 I think des's commit that removed the _use_yp variable from
 usr.sbin/vipw/pw_util.c fixed it.  I managed to get an unresolved symbol
 error for _use_yp out of pam with the attached patch.

I have a similar patch in my tree, but dlerror() keeps returning NULL,
and I've been unable to find out why :( I ended up modifying
_rtld_error() in rtld.c to actually print the error message.

DES
-- 
Dag-Erling Smorgrav - [EMAIL PROTECTED]

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-current in the body of the message

Re: PAM broke?

2002-04-16 Thread Terry Lambert


Dag-Erling Smorgrav wrote:
 Benno Rice [EMAIL PROTECTED] writes:
  I think des's commit that removed the _use_yp variable from
  usr.sbin/vipw/pw_util.c fixed it.  I managed to get an unresolved symbol
  error for _use_yp out of pam with the attached patch.
 
 I have a similar patch in my tree, but dlerror() keeps returning NULL,
 and I've been unable to find out why :( I ended up modifying
 _rtld_error() in rtld.c to actually print the error message.

Ugh.

It indicates that the dlerror() symbol wasn't foind un ld.so
by the glue code.

-- Terry

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-current in the body of the message

PAM broke?

2002-04-15 Thread Dan Eischen


Fresh cvsup and buildworld from today's -current seems to have
broken pam logins for telnet and ssh.  Fresh mergemaster too.

Apr 15 19:59:14 rigel telnetd[285]: in openpam_load_module(): no pam_unix.so found 
Apr 15 19:59:14 rigel telnetd[285]: in openpam_load_module(): no pam_unix.so found 
Apr 15 19:59:14 rigel telnetd[285]: pam_start: failed to load module
Apr 15 19:59:17 rigel telnetd[285]: in openpam_load_module(): no pam_unix.so found 
Apr 15 19:59:17 rigel telnetd[285]: in openpam_load_module(): no pam_unix.so found 
Apr 15 19:59:17 rigel telnetd[285]: pam_start: failed to load module
Apr 15 19:59:27 rigel sshd[287]: in openpam_load_module(): no pam_unix.so found 
Apr 15 19:59:27 rigel sshd[287]: in openpam_load_module(): no pam_unix.so found 
Apr 15 19:59:27 rigel sshd[287]: fatal: PAM initialisation failed[1]: failed to load 
module

--

# No pamd.conf
bash-2.02$ cat /etc/pamd.conf 
cat: /etc/pamd.conf: No such file or directory

--

bash-2.02$ cat /etc/pam.d/sshd
#
# $FreeBSD: src/etc/pam.d/sshd,v 1.4 2002/04/15 02:46:24 des Exp $
#
# PAM configuration for the sshd service
#

# auth
authrequiredpam_nologin.so  no_warn
authrequiredpam_unix.so no_warn try_first_pass

# account
account requiredpam_login_access.so
account requiredpam_unix.so

# session
session requiredpam_lastlog.so
session requiredpam_permit.so

# password
passwordrequiredpam_permit.so

--

bash-2.02$ cat /etc/pam.d/telnetd
#
# $FreeBSD: src/etc/pam.d/telnetd,v 1.2 2001/12/05 21:26:00 des Exp $
#
# PAM configuration for the telnetd service
#

# auth
authrequiredpam_nologin.so  no_warn
authrequiredpam_unix.so no_warn try_first_pass

# account
account requiredpam_unix.so

--

bash-2.02$ ls -l /usr/lib/pam*.so.2
-r--r--r--  1 root  wheel   3180 Apr 15 19:14 /usr/lib/pam_deny.so.2
-r--r--r--  1 root  wheel   5260 Apr 15 19:14 /usr/lib/pam_ftp.so.2
-r--r--r--  1 root  wheel   4840 Apr 15 19:14 /usr/lib/pam_lastlog.so.2
-r--r--r--  1 root  wheel   6684 Apr 15 19:14 /usr/lib/pam_login_access.so.2
-r--r--r--  1 root  wheel   4436 Apr 15 19:14 /usr/lib/pam_nologin.so.2
-r--r--r--  1 root  wheel   4700 Apr 15 19:14 /usr/lib/pam_opie.so.2
-r--r--r--  1 root  wheel   3852 Apr 15 19:14 /usr/lib/pam_opieaccess.so.2
-r--r--r--  1 root  wheel  39436 Apr 15 19:14 /usr/lib/pam_passwdqc.so.2
-r--r--r--  1 root  wheel   3164 Apr 15 19:14 /usr/lib/pam_permit.so.2
-r--r--r--  1 root  wheel   7432 Apr 15 19:14 /usr/lib/pam_radius.so.2
-r--r--r--  1 root  wheel   3552 Apr 15 19:14 /usr/lib/pam_rhosts.so.2
-r--r--r--  1 root  wheel   3408 Apr 15 19:14 /usr/lib/pam_rootok.so.2
-r--r--r--  1 root  wheel   3940 Apr 15 19:14 /usr/lib/pam_securetty.so.2
-r--r--r--  1 root  wheel   3668 Apr 15 19:14 /usr/lib/pam_self.so.2
-r--r--r--  1 root  wheel   9812 Apr 15 19:14 /usr/lib/pam_ssh.so.2
-r--r--r--  1 root  wheel   7276 Apr 15 19:14 /usr/lib/pam_tacplus.so.2
-r--r--r--  1 root  wheel  14972 Apr 15 19:14 /usr/lib/pam_unix.so.2
-r--r--r--  1 root  wheel   5052 Apr 15 19:14 /usr/lib/pam_wheel.so.2

Any clues?

-- 
Dan Eischen

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-current in the body of the message

Re: PAM broke?

2002-04-15 Thread Benno Rice


On Tue, 2002-04-16 at 10:07, Dan Eischen wrote:
 Fresh cvsup and buildworld from today's -current seems to have
 broken pam logins for telnet and ssh.  Fresh mergemaster too.

[snip]

 Any clues?

Remove -DYP from the CFLAGS in /usr/lib/libpam/modules/pam_unix/Makefile
and rebuild/reinstall libpam.

This took me about an hour to track down. =(

-- 
Benno Rice
[EMAIL PROTECTED]



signature.asc
Description: This is a digitally signed message part

Re: PAM broke?

2002-04-15 Thread Daniel Eischen


On 16 Apr 2002, Benno Rice wrote:
 On Tue, 2002-04-16 at 10:07, Dan Eischen wrote:
  Fresh cvsup and buildworld from today's -current seems to have
  broken pam logins for telnet and ssh.  Fresh mergemaster too.
 
 [snip]
 
  Any clues?
 
 Remove -DYP from the CFLAGS in /usr/lib/libpam/modules/pam_unix/Makefile
 and rebuild/reinstall libpam.

Thanks, that did the trick.

Anyone know if this is the correct fix?  It shouldn't be left
broken.

-- 
Dan Eischen


To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-current in the body of the message

Re: PAM broke?

2002-04-15 Thread Benno Rice


On Tue, 2002-04-16 at 13:43, Daniel Eischen wrote:
 On 16 Apr 2002, Benno Rice wrote:
  On Tue, 2002-04-16 at 10:07, Dan Eischen wrote:
   Fresh cvsup and buildworld from today's -current seems to have
   broken pam logins for telnet and ssh.  Fresh mergemaster too.
  
  [snip]
  
   Any clues?
  
  Remove -DYP from the CFLAGS in /usr/lib/libpam/modules/pam_unix/Makefile
  and rebuild/reinstall libpam.
 
 Thanks, that did the trick.
 
 Anyone know if this is the correct fix?  It shouldn't be left
 broken.

I think des's commit that removed the _use_yp variable from
usr.sbin/vipw/pw_util.c fixed it.  I managed to get an unresolved symbol
error for _use_yp out of pam with the attached patch.

-- 
Benno Rice
[EMAIL PROTECTED]


Index: contrib/openpam/lib/openpam_dynamic.c
===
RCS file: /home/ncvs/src/contrib/openpam/lib/openpam_dynamic.c,v
retrieving revision 1.1.1.2
diff -u -r1.1.1.2 openpam_dynamic.c
--- contrib/openpam/lib/openpam_dynamic.c   7 Mar 2002 19:24:22 -   1.1.1.2
+++ contrib/openpam/lib/openpam_dynamic.c   16 Apr 2002 03:49:27 -
@@ -67,6 +67,7 @@
*strrchr(vpath, '.') = '\0';
if ((dlh = dlopen(vpath, RTLD_NOW)) == NULL) {
free(module);
+   openpam_log(PAM_LOG_ERROR, %s, dlerror());
return (NULL);
}
}



signature.asc
Description: This is a digitally signed message part

Re: PAM broke?

Re: PAM broke?

PAM broke?

Re: PAM broke?

Re: PAM broke?

Re: PAM broke?

6 matches

Site Navigation

Mail list logo

Footer information