I sniffed around a bit more, and it looks like the debug output is going to /var/log/auth.log. Here's what I see for the abortive password-change attempt:
Feb 19 00:20:34 host passwd[9847]: pam_krb5(passwd:chauthtok): pam_sm_chauthtok: entry (0x4000) Feb 19 00:20:34 host passwd[9847]: pam_krb5(passwd:chauthtok): (user kerberosuser) attempting authentication as [email protected] Feb 19 00:20:39 host passwd[9847]: pam_krb5(passwd:chauthtok): pam_sm_chauthtok: exit (success) Feb 19 00:20:39 host passwd[9847]: pam_unix(passwd:chauthtok): user "kerberosuser" does not exist in /etc/passwd The user is not in /etc/passwd, because this system uses LDAP for the passwd database: $ grep kerberosuser /etc/passwd $ getent passwd kerberosuser kereberosuser:*:21234:10000:Kerberos Dude:/stuff/kerberosuser:/bin/bash Unlike the situation that existed previously, password-changing doesn't work whether pam_krb5 or pam_unix is first in the stack. I get the same error either way. So is this a bug in pam_krb5, or pam_unix, or what? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/334795 Title: cannot change password -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
