Re: PAM broke?
Benno Rice [EMAIL PROTECTED] writes: I think des's commit that removed the _use_yp variable from usr.sbin/vipw/pw_util.c fixed it. I managed to get an unresolved symbol error for _use_yp out of pam with the attached patch. I have a similar patch in my tree, but dlerror() keeps returning NULL, and I've been unable to find out why :( I ended up modifying _rtld_error() in rtld.c to actually print the error message. DES -- Dag-Erling Smorgrav - [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-current in the body of the message
Re: PAM broke?
Dag-Erling Smorgrav wrote: Benno Rice [EMAIL PROTECTED] writes: I think des's commit that removed the _use_yp variable from usr.sbin/vipw/pw_util.c fixed it. I managed to get an unresolved symbol error for _use_yp out of pam with the attached patch. I have a similar patch in my tree, but dlerror() keeps returning NULL, and I've been unable to find out why :( I ended up modifying _rtld_error() in rtld.c to actually print the error message. Ugh. It indicates that the dlerror() symbol wasn't foind un ld.so by the glue code. -- Terry To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-current in the body of the message
PAM broke?
Fresh cvsup and buildworld from today's -current seems to have broken pam logins for telnet and ssh. Fresh mergemaster too. Apr 15 19:59:14 rigel telnetd[285]: in openpam_load_module(): no pam_unix.so found Apr 15 19:59:14 rigel telnetd[285]: in openpam_load_module(): no pam_unix.so found Apr 15 19:59:14 rigel telnetd[285]: pam_start: failed to load module Apr 15 19:59:17 rigel telnetd[285]: in openpam_load_module(): no pam_unix.so found Apr 15 19:59:17 rigel telnetd[285]: in openpam_load_module(): no pam_unix.so found Apr 15 19:59:17 rigel telnetd[285]: pam_start: failed to load module Apr 15 19:59:27 rigel sshd[287]: in openpam_load_module(): no pam_unix.so found Apr 15 19:59:27 rigel sshd[287]: in openpam_load_module(): no pam_unix.so found Apr 15 19:59:27 rigel sshd[287]: fatal: PAM initialisation failed[1]: failed to load module -- # No pamd.conf bash-2.02$ cat /etc/pamd.conf cat: /etc/pamd.conf: No such file or directory -- bash-2.02$ cat /etc/pam.d/sshd # # $FreeBSD: src/etc/pam.d/sshd,v 1.4 2002/04/15 02:46:24 des Exp $ # # PAM configuration for the sshd service # # auth authrequiredpam_nologin.so no_warn authrequiredpam_unix.so no_warn try_first_pass # account account requiredpam_login_access.so account requiredpam_unix.so # session session requiredpam_lastlog.so session requiredpam_permit.so # password passwordrequiredpam_permit.so -- bash-2.02$ cat /etc/pam.d/telnetd # # $FreeBSD: src/etc/pam.d/telnetd,v 1.2 2001/12/05 21:26:00 des Exp $ # # PAM configuration for the telnetd service # # auth authrequiredpam_nologin.so no_warn authrequiredpam_unix.so no_warn try_first_pass # account account requiredpam_unix.so -- bash-2.02$ ls -l /usr/lib/pam*.so.2 -r--r--r-- 1 root wheel 3180 Apr 15 19:14 /usr/lib/pam_deny.so.2 -r--r--r-- 1 root wheel 5260 Apr 15 19:14 /usr/lib/pam_ftp.so.2 -r--r--r-- 1 root wheel 4840 Apr 15 19:14 /usr/lib/pam_lastlog.so.2 -r--r--r-- 1 root wheel 6684 Apr 15 19:14 /usr/lib/pam_login_access.so.2 -r--r--r-- 1 root wheel 4436 Apr 15 19:14 /usr/lib/pam_nologin.so.2 -r--r--r-- 1 root wheel 4700 Apr 15 19:14 /usr/lib/pam_opie.so.2 -r--r--r-- 1 root wheel 3852 Apr 15 19:14 /usr/lib/pam_opieaccess.so.2 -r--r--r-- 1 root wheel 39436 Apr 15 19:14 /usr/lib/pam_passwdqc.so.2 -r--r--r-- 1 root wheel 3164 Apr 15 19:14 /usr/lib/pam_permit.so.2 -r--r--r-- 1 root wheel 7432 Apr 15 19:14 /usr/lib/pam_radius.so.2 -r--r--r-- 1 root wheel 3552 Apr 15 19:14 /usr/lib/pam_rhosts.so.2 -r--r--r-- 1 root wheel 3408 Apr 15 19:14 /usr/lib/pam_rootok.so.2 -r--r--r-- 1 root wheel 3940 Apr 15 19:14 /usr/lib/pam_securetty.so.2 -r--r--r-- 1 root wheel 3668 Apr 15 19:14 /usr/lib/pam_self.so.2 -r--r--r-- 1 root wheel 9812 Apr 15 19:14 /usr/lib/pam_ssh.so.2 -r--r--r-- 1 root wheel 7276 Apr 15 19:14 /usr/lib/pam_tacplus.so.2 -r--r--r-- 1 root wheel 14972 Apr 15 19:14 /usr/lib/pam_unix.so.2 -r--r--r-- 1 root wheel 5052 Apr 15 19:14 /usr/lib/pam_wheel.so.2 Any clues? -- Dan Eischen To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-current in the body of the message
Re: PAM broke?
On Tue, 2002-04-16 at 10:07, Dan Eischen wrote: Fresh cvsup and buildworld from today's -current seems to have broken pam logins for telnet and ssh. Fresh mergemaster too. [snip] Any clues? Remove -DYP from the CFLAGS in /usr/lib/libpam/modules/pam_unix/Makefile and rebuild/reinstall libpam. This took me about an hour to track down. =( -- Benno Rice [EMAIL PROTECTED] signature.asc Description: This is a digitally signed message part
Re: PAM broke?
On 16 Apr 2002, Benno Rice wrote: On Tue, 2002-04-16 at 10:07, Dan Eischen wrote: Fresh cvsup and buildworld from today's -current seems to have broken pam logins for telnet and ssh. Fresh mergemaster too. [snip] Any clues? Remove -DYP from the CFLAGS in /usr/lib/libpam/modules/pam_unix/Makefile and rebuild/reinstall libpam. Thanks, that did the trick. Anyone know if this is the correct fix? It shouldn't be left broken. -- Dan Eischen To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-current in the body of the message
Re: PAM broke?
On Tue, 2002-04-16 at 13:43, Daniel Eischen wrote: On 16 Apr 2002, Benno Rice wrote: On Tue, 2002-04-16 at 10:07, Dan Eischen wrote: Fresh cvsup and buildworld from today's -current seems to have broken pam logins for telnet and ssh. Fresh mergemaster too. [snip] Any clues? Remove -DYP from the CFLAGS in /usr/lib/libpam/modules/pam_unix/Makefile and rebuild/reinstall libpam. Thanks, that did the trick. Anyone know if this is the correct fix? It shouldn't be left broken. I think des's commit that removed the _use_yp variable from usr.sbin/vipw/pw_util.c fixed it. I managed to get an unresolved symbol error for _use_yp out of pam with the attached patch. -- Benno Rice [EMAIL PROTECTED] Index: contrib/openpam/lib/openpam_dynamic.c === RCS file: /home/ncvs/src/contrib/openpam/lib/openpam_dynamic.c,v retrieving revision 1.1.1.2 diff -u -r1.1.1.2 openpam_dynamic.c --- contrib/openpam/lib/openpam_dynamic.c 7 Mar 2002 19:24:22 - 1.1.1.2 +++ contrib/openpam/lib/openpam_dynamic.c 16 Apr 2002 03:49:27 - @@ -67,6 +67,7 @@ *strrchr(vpath, '.') = '\0'; if ((dlh = dlopen(vpath, RTLD_NOW)) == NULL) { free(module); + openpam_log(PAM_LOG_ERROR, %s, dlerror()); return (NULL); } } signature.asc Description: This is a digitally signed message part