ports/114825: pam module security/pam_abl not working
Alex Keda
admin at lissyara.su
Thu Oct 4 11:30:09 UTC 2007
The following reply was made to PR ports/114825; it has been noted by GNATS.
From: Alex Keda <admin at lissyara.su>
To: bug-followup at FreeBSD.org, admin at lissyara.su
Cc:
Subject: Re: ports/114825: pam module security/pam_abl not working
Date: Thu, 04 Oct 2007 15:29:17 +0400
It not work.
radius# tail -f /var/log/all.log
Oct 4 15:24:53 radius pam_abl[40711]: /usr/local/etc/pam_abl.conf:
host_db=/var/db/pam_abl/hosts.db
Oct 4 15:24:53 radius pam_abl[40711]: /usr/local/etc/pam_abl.conf:
host_purge=2d
Oct 4 15:24:53 radius pam_abl[40711]: /usr/local/etc/pam_abl.conf:
host_rule=*:10/1h,30/1d
Oct 4 15:24:53 radius pam_abl[40711]: /usr/local/etc/pam_abl.conf:
user_db=/var/db/pam_abl/users.db
Oct 4 15:24:53 radius pam_abl[40711]: /usr/local/etc/pam_abl.conf:
user_purge=2d
Oct 4 15:24:53 radius pam_abl[40711]: /usr/local/etc/pam_abl.conf:
user_rule=!root:10/1h,30/1d
Oct 4 15:24:53 radius pam_abl[40711]: Checking host lissyara.domain.local
Oct 4 15:24:53 radius pam_abl[40711]: Checking user lissyara
Oct 4 15:24:54 radius sshd[40709]: error: PAM: authentication error for
lissyara from lissyara.domain.local
Oct 4 15:24:54 radius kernel: Oct 4 15:24:54 radius sshd[40709]:
error: PAM: authentication error for lissyara from lissyara.domain.local
Oct 4 15:24:54 radius pam_abl[40712]: /usr/local/etc/pam_abl.conf:
host_db=/var/db/pam_abl/hosts.db
Oct 4 15:24:54 radius pam_abl[40712]: /usr/local/etc/pam_abl.conf:
host_purge=2d
Oct 4 15:24:54 radius pam_abl[40712]: /usr/local/etc/pam_abl.conf:
host_rule=*:10/1h,30/1d
Oct 4 15:24:54 radius pam_abl[40712]: /usr/local/etc/pam_abl.conf:
user_db=/var/db/pam_abl/users.db
Oct 4 15:24:54 radius pam_abl[40712]: /usr/local/etc/pam_abl.conf:
user_purge=2d
Oct 4 15:24:54 radius pam_abl[40712]: /usr/local/etc/pam_abl.conf:
user_rule=!root:10/1h,30/1d
Oct 4 15:24:54 radius pam_abl[40712]: Checking host lissyara.domain.local
Oct 4 15:24:54 radius pam_abl[40712]: Checking user lissyara
Oct 4 15:24:54 radius sshd[40709]: error: PAM: authentication error for
lissyara from lissyara.domain.local
Oct 4 15:24:54 radius pam_abl[40713]: /usr/local/etc/pam_abl.conf:
host_db=/var/db/pam_abl/hosts.db
Oct 4 15:24:54 radius pam_abl[40713]: /usr/local/etc/pam_abl.conf:
host_purge=2d
Oct 4 15:24:54 radius pam_abl[40713]: /usr/local/etc/pam_abl.conf:
host_rule=*:10/1h,30/1d
Oct 4 15:24:54 radius pam_abl[40713]: /usr/local/etc/pam_abl.conf:
user_db=/var/db/pam_abl/users.db
Oct 4 15:24:54 radius pam_abl[40713]: /usr/local/etc/pam_abl.conf:
user_purge=2d
Oct 4 15:24:54 radius pam_abl[40713]: /usr/local/etc/pam_abl.conf:
user_rule=!root:10/1h,30/1d
Oct 4 15:24:54 radius pam_abl[40713]: Checking host lissyara.domain.local
Oct 4 15:24:54 radius pam_abl[40713]: Checking user lissyara
Oct 4 15:24:54 radius sshd[40709]: error: PAM: authentication error for
lissyara from lissyara.domain.local
radius# uname -a
FreeBSD radius.domain.local 6.2-RELEASE FreeBSD 6.2-RELEASE #0: Fri Jan
12 11:05:30 UTC 2007
root at dessler.cse.buffalo.edu:/usr/obj/usr/src/sys/SMP i386
radius# diff -Nru /etc/pam.d/sshd.orig /etc/pam.d/sshd
--- /etc/pam.d/sshd.orig Thu Oct 4 15:18:02 2007
+++ /etc/pam.d/sshd Thu Oct 4 15:19:53 2007
@@ -10,6 +10,7 @@
auth requisite pam_opieaccess.so no_warn allow_local
#auth sufficient pam_krb5.so no_warn
try_first_pass
#auth sufficient pam_ssh.so no_warn
try_first_pass
+auth required /usr/local/lib/pam_abl.so
config=/usr/local/etc/pam_abl.conf
auth required pam_unix.so no_warn
try_first_pass
radius# more /usr/local/etc/pam_abl.conf
# /usr/local/etc/pam_abl.conf
debug
host_db=/var/db/pam_abl/hosts.db
host_purge=2d
host_rule=*:10/1h,30/1d
user_db=/var/db/pam_abl/users.db
user_purge=2d
user_rule=!root:10/1h,30/1d
radius# ll /var/db/pam_abl/
total 0
radius#
More information about the freebsd-ports-bugs
mailing list