From owner-freebsd-current@FreeBSD.ORG Sun Jul 15 08:30:53 2007 Return-Path: X-Original-To: current@freebsd.org Delivered-To: freebsd-current@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 45FB616A401 for ; Sun, 15 Jul 2007 08:30:53 +0000 (UTC) (envelope-from uspoerlein@gmail.com) Received: from mu-out-0910.google.com (mu-out-0910.google.com [209.85.134.185]) by mx1.freebsd.org (Postfix) with ESMTP id 7842813C441 for ; Sun, 15 Jul 2007 08:30:52 +0000 (UTC) (envelope-from uspoerlein@gmail.com) Received: by mu-out-0910.google.com with SMTP id w9so1075826mue for ; Sun, 15 Jul 2007 01:30:51 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:received:date:from:to:cc:subject:message-id:mail-followup-to:mime-version:content-type:content-disposition:user-agent; b=lbxcjPRl5R72yWVBVJxWOZ6e876+ZyYIioVy6vmSBSiDKujqo+d3J4oEeOaR98099z2VHDmZErcaw0YEtXwhpxoq93j9ani682SC4/P/LFUMawj7/njY24afCYbRjvywhwPS2yquUDecsiYlKniawLwyM11kKg278vqd5UdrU24= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:to:cc:subject:message-id:mail-followup-to:mime-version:content-type:content-disposition:user-agent; b=YKRtPHmAX4zyMdpeNCqBiUgfLYXvULA5jVM+68Eagv28NQPdORJsz+xYYu1/h1M1nUEswDw/ROdbwMn7W9GzKT35v7XpFktdYKZHxLmuYa71hv9U5b9tYJkJ/46bo0yIw/TtsZt5GijxmG0zizmCBRYshWb6pVF1L9r3TaG/EAs= Received: by 10.86.28.5 with SMTP id b5mr2682071fgb.1184488251176; Sun, 15 Jul 2007 01:30:51 -0700 (PDT) Received: from roadrunner.q.local ( [85.180.167.127]) by mx.google.com with ESMTP id 13sm7598898fks.2007.07.15.01.30.50 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 15 Jul 2007 01:30:50 -0700 (PDT) Received: from roadrunner.q.local (localhost [127.0.0.1]) by roadrunner.q.local (8.14.1/8.14.1) with ESMTP id l6F8Ul3C002877; Sun, 15 Jul 2007 10:30:47 +0200 (CEST) (envelope-from uspoerlein@gmail.com) Received: (from q@localhost) by roadrunner.q.local (8.14.1/8.14.1/Submit) id l6F8UkcT002876; Sun, 15 Jul 2007 10:30:46 +0200 (CEST) (envelope-from uspoerlein@gmail.com) Date: Sun, 15 Jul 2007 10:30:46 +0200 From: Ulrich Spoerlein To: current@freebsd.org Message-ID: <20070715083046.GA2819@roadrunner.q.local> Mail-Followup-To: current@freebsd.org, des@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.15 (2007-04-06) Cc: des@freebsd.org Subject: pam.d and ssh-agent no longer working X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 15 Jul 2007 08:30:53 -0000 Hi, on a fairly recent CURRENT, the ssh-agent started by pam.d/login no longer loads the identity. This was working just fine till a few days ago. pam.d/system auth sufficient pam_ssh.so no_warn try_first_pass auth sufficient /usr/local/lib/pam_ldap.so no_warn use_first_pass auth required pam_unix.so no_warn use_first_pass nullok pam.d/login # session session required pam_ssh.so want_agent session include system Upon login with the SSH passphrase (which works!) an agent is running, but no identity is loaded. % pgrep -fl agent 1342 ssh_agent -s 1341 ssh-agent % ssh-add -l The agent has no identities. (1)% I then have to ssh-add(1) and everything is working fine from then on. Are other people seeing this, too? How should I go about debugging this? Cheers, Ulrich Spoerlein -- "The trouble with the dictionary is you have to know how the word is spelled before you can look it up to see how it is spelled." -- Will Cuppy