Date: Mon, 14 Jul 2003 08:40:42 -0400 From: "Robin P. Blanchard" <Robin.Blanchard@gactr.uga.edu> To: "John De Boskey" <jwd@bsdwins.com>, <current@freebsd.org> Cc: "Jacques A. Vidrine" <nectar@freebsd.org> Subject: RE: Help diagnosing NIS breakage ? Message-ID: <EE3D3FBAFFCAED448C21C398FDAD91AC010837@EBE1.gc.nat>
next in thread | raw e-mail | index | archive | help
Ok...Been systematically stepping through the sources to locate the = point at which NIS became broken. Here are the results: -CURRENT src date report ------------------- ------- 2003.06.18.00.00.00 success 2003.06.25.00.00.00 success 2003.06.26.00.00.00 success 2003.06.27.00.00.00 sucesss 2003.06.28.00.00.00 failure 2003.07.01.00.00.00 failure 2003.07.09.00.00.00 failure latest (last night) failure So, something between 27 and 28 June resulted in this NIS breakage. = Hopefully this will jog someone's memory and give ideas as to my/our next step as = to diagnosing/repairing what's wrong here. I have a test box with src's and = obj 's from both 27 and 28 june availabe for testing, should someone like to = ssh in and poke around. Thanks in advance. Robin. =20 > Can you build with a testbox new sources (binary search)=20 > until you can locate the cutover point between where it works=20 > and where it doesn't? > > > OK... Nsswitch.conf exists on neither machine here. I setup a > > > test nsswitch.conf on the broken NIS box to use NIS but it=20 > > > didn't help at all. > > >=20 > > > 1) > > > On FreeBSD 5.1-CURRENT #0: Tue Jun 17 10:28:52 EDT 2003: > > > # ypcat passwd |fgrep robin > > > robin:OeIS3xdIRAiQs:20292:30028::/home/robin:/bin/bash > > > # finger robin > > > Login: robin Name:=20 > > > Directory: /home/robin Shell: /bin/bash > > > Never logged in. > > > No Mail. > > > No Plan. > > > # id robin > > > uid=3D20292(robin) gid=3D30028(NSS) groups=3D30028(NSS),=20 > > > 30000(gactr), 30026(ITS) # tail -2 /etc/passwd=20 > > > nobody:*:65534:65534:Unprivileged user:/nonexistent:/sbin/nologin > > > +:*::::: > > > # tail -2 /etc/passwd > > > nobody:*:65534:65534:Unprivileged user:/nonexistent:/sbin/nologin > > > +:*::::: > > > # tail -2 /etc/group > > > nobody:*:65534: > > > +:*:0: > > >=20 > > >=20 > > > 2) > > > On FreeBSD 5.1-CURRENT #0: Mon Jul 7 11:33:56 EDT 2003 > > > # ypcat passwd |fgrep robin > > > robin:OeIS3xdIRAiQs:20292:30028::/home/robin:/bin/bash > > > # finger robin > > > Login: robin Name:=20 > > > Directory: /home/robin Shell: /bin/bash > > > Last login Mon Jul 7 07:47 (EDT) on ttyp0 from 10.2.2.10 > > > No Mail. > > > No Plan. > > > # id robin > > > id: robin: no such user > > > # tail -2 /etc/passwd=20 > > > nobody:*:65534:65534:Unprivileged user:/nonexistent:/sbin/nologin > > > +:*::::: > > > # > > > # tail -2 /etc/group > > > nobody:*:65534: > > > +:*:0: > > >=20 > > > And here's something else interesting on this 'broken' NIS box: > > >=20 > > > # ls -ald . > > > drwx--x--x 4 20292 NSS 4.0K Jun 13 13:34 ./ > > >=20 > > > So (via NIS) GID translation is working but not UID=20 > translation.... > > >=20 > > > Look forward to getting this solved... > > >=20 > > >=20 > > > >=20 > > > > -john > > > >=20 > > > > > Demonstration: > > > > >=20 > > > > > # ypcat passwd |fgrep robin=20 > > > > > robin:OeIS3xdIRAiQs:20292:30028::/home/robin:/bin/bash > > > > > # ypcat group |fgrep robin > > > > >=20 > > > >=20 > > >=20 > gactr::30000:holmesr,wrighta,prestonh,reagind,gankol,cafieroj,cahoon > > > b, > > > > > pettigr > > > > > m,brantlek,thumat,dosterc,nate,robin,charles > > > > > ITS::30026:dosterc,nate,robin,charles > > > > > NSS::30028:dosterc,nate,robin,charles,test > > > > > # ps ax |fgrep ypbind > > > > > 79910 ?? Ss 0:00.03 ypbind > > > > > # ypwhich > > > > > GCDC2.gc.nat > > > > > # finger robin > > > > > Login: robin Name:=20 > > > > > Directory: /home/robin Shell: /bin/bash > > > > > Last login Mon Jul 7 07:47 (EDT) on ttyp0 from 10.2.2.10 No=20 > > > > > Mail. No Plan. > > > > >=20 > > > > > So NIS is 'working'...But: > > > > > # id robin > > > > > id: robin: no such user > > > > >=20 > > > > > And as a result, he (I) cannot login. > > > > >=20 > > > > > # su - robin ; tail -1 /var/log/auth.log > > > > >=20 > > > > > su: Sorry > > > > > Jul 7 13:59:29 ftp su: pam_acct_mgmt: error in service module > > > > >=20 > > > > > There's a truss and a ktrace (of the id command)=20 > available at:=20 > > > > > ftp://ftp.gactr.uga.edu/incoming/id.tar.gz > > > > >=20 > > > > > Thanks in advance. > > > >=20 > > >=20 >=20 > --=20 > -- > As said by Napolean Bonaparte: > "Never ascribe to malice, that which is adequately explained=20 > by incompetence" >=20 > After being embraced by MS: >=20 > "When accused of malice, always hide behind incompetence". >=20
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?EE3D3FBAFFCAED448C21C398FDAD91AC010837>