From owner-freebsd-current@FreeBSD.ORG Fri Apr 25 10:21:13 2003 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8C52537B401; Fri, 25 Apr 2003 10:21:13 -0700 (PDT) Received: from symbion.srrc.usda.gov (symbion.srrc.usda.gov [199.133.86.40]) by mx1.FreeBSD.org (Postfix) with ESMTP id 22F4943FB1; Fri, 25 Apr 2003 10:21:12 -0700 (PDT) (envelope-from gjohnson@srrc.ars.usda.gov) Received: from node1.cluster.srrc.usda.gov (localhost [127.0.0.1]) by symbion.srrc.usda.gov (8.12.9/8.12.9) with ESMTP id h3PHLAub030405; Fri, 25 Apr 2003 12:21:10 -0500 (CDT) (envelope-from glenn@node1.cluster.srrc.usda.gov) Received: (from glenn@localhost)h3PHLAon030404; Fri, 25 Apr 2003 12:21:10 -0500 (CDT) (envelope-from glenn) Date: Fri, 25 Apr 2003 12:21:10 -0500 From: Glenn Johnson To: "Jacques A. Vidrine" Message-ID: <20030425172110.GA28012@node1.cluster.srrc.usda.gov> Mail-Followup-To: "Jacques A. Vidrine" , current@freebsd.org References: <20030423210539.GA1348@node1.cluster.srrc.usda.gov> <20030423215038.GB22152@madman.celabo.org> <20030423220754.GA16387@node1.cluster.srrc.usda.gov> <20030423221120.GA22798@madman.celabo.org> <20030423221915.GA17543@node1.cluster.srrc.usda.gov> <20030424020829.GA73546@madman.celabo.org> <20030425155530.GA17160@node1.cluster.srrc.usda.gov> <20030425161942.GB77953@madman.celabo.org> <20030425165241.GB20846@node1.cluster.srrc.usda.gov> <20030425170322.GA85737@madman.celabo.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030425170322.GA85737@madman.celabo.org> User-Agent: Mutt/1.5.4i cc: current@FreeBSD.org Subject: Re: groups wrong on NIS clients X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Apr 2003 17:21:13 -0000 On Fri, Apr 25, 2003 at 12:03:24PM -0500, Jacques A. Vidrine wrote: > On Fri, Apr 25, 2003 at 11:52:41AM -0500, Glenn Johnson wrote: > > > as root: > > ~~~~~~~~~~~~~~~~~~~~~~ > > as user glenn: > > ~~~~~~~~~~~~~~~~~~~~~~ > > > /etc/nsswitch.conf > > > group: files nis > > as root: > > ~~~~~~~~~~~~~~~~~~~~~~ > > as user glenn: > > ~~~~~~~~~~~~~~~~~~~~~~ > > That all looks good. Your NIS groups entries were listed in all > cases. So it appears that something is screwing up in sshd's > environment. > > Hmm, at least I can reproduce this now by using the base system > /usr/sbin/sshd. Now I have a chance of tracking it down! :-) > > > I also ran the groups command with and without the nsswitch.conf > > file. > > > > without nsswitch.conf: > > > > glenn > > > > with nsswitch.conf: > > > > glenn kmem cluster operator wheel > > OK, now _that_ is surprising! We've already seen that the list of > groups are the same in either configuration. Or maybe, did you log > off and back in between those two `group' commands? Yes. If I ssh into the host and there is _no_ nsswitch.conf file present then the output of groups is just my user group. If I ssh into the host and the nsswitch.conf file _is_ present then the output of the groups command is the correct listing of the groups I am a member of. -- Glenn Johnson USDA, ARS, SRRC Phone: (504) 286-4252 New Orleans, LA 70124 e-mail: gjohnson@srrc.ars.usda.gov