From owner-freebsd-questions@FreeBSD.ORG Fri Feb 13 04:16:52 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1C69F106564A for ; Fri, 13 Feb 2009 04:16:52 +0000 (UTC) (envelope-from rock_on_the_web@comcen.com.au) Received: from angel.comcen.com.au (angel.comcen.com.au [203.23.236.69]) by mx1.freebsd.org (Postfix) with ESMTP id D6AA08FC0A for ; Fri, 13 Feb 2009 04:16:51 +0000 (UTC) (envelope-from rock_on_the_web@comcen.com.au) Received: from [192.168.0.192] (unknown [202.172.126.254]) by angel.comcen.com.au (Postfix) with ESMTP id 1306C5C2E4DA for ; Fri, 13 Feb 2009 15:18:13 +1100 (EST) From: Da Rock To: freebsd-questions@freebsd.org In-Reply-To: References: <325E4EC8-BD2B-45C1-978C-4922D16D3A94@identry.com> <9391FD2D-59ED-455A-8C87-2854C7EF1E52@mac.com> Content-Type: text/plain Date: Fri, 13 Feb 2009 14:17:05 +1000 Message-Id: <1234498626.13067.96.camel@laptop1.herveybayaustralia.com.au> Mime-Version: 1.0 X-Mailer: Evolution 2.24.4 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit Subject: Re: Old user can't log in X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Feb 2009 04:16:52 -0000 On Thu, 2009-02-12 at 21:48 -0500, John Almberg wrote: > On Feb 12, 2009, at 7:19 PM, Chuck Swiger wrote: > > > On Feb 12, 2009, at 3:14 PM, John Almberg wrote: > >> Just ran into a strange problem... I have a long-standing user > >> account on my FreeBSD box that no longer works. She can't ssh into > >> the box, and I can't even su to her account. > >> > >> $ su jessica > >> Password: > >> su: setusercontext: Invalid argument > > > > Does group 1022 exist in /etc/groups? > > Yes > > > Is the user a member of more than 16 groups? > > Actually, 15 plus it's own group, so yes, I guess exactly 16. > > I can guess what you're going to say next. Frack... > > Okay, I guess I can reorganize groups to eliminate this problem. > > Thanks for the hint (as they say, a hint to the wise is sufficient...) > > -- John I've been following this thread with interest: are you saying FreeBSD logins cannot handle more than 16 groups? If so, why? Is this mitigated by using other authentication methods (ie kerberos, ldap, etc)?