From owner-freebsd-questions@FreeBSD.ORG  Fri Apr 18 10:46:59 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9DB7A37B401
	for <freebsd-questions@freebsd.org>;
	Fri, 18 Apr 2003 10:46:59 -0700 (PDT)
Received: from moutng.kundenserver.de (moutng.kundenserver.de
	[212.227.126.177])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7311E43FA3
	for <freebsd-questions@freebsd.org>;
	Fri, 18 Apr 2003 10:46:58 -0700 (PDT)
	(envelope-from listen@danielgraupner.de)
Received: from [212.227.126.162] (helo=mrelayng.kundenserver.de)
	by moutng.kundenserver.de with esmtp (Exim 3.35 #1)
	id 196Zwv-0006Pr-00
	for freebsd-questions@freebsd.org; Fri, 18 Apr 2003 19:46:57 +0200
Received: from [213.6.75.224] (helo=danielgraupner.de)
	by mrelayng.kundenserver.de with asmtp (TLSv1:RC4-MD5:128)
	(Exim 3.35 #1)
	id 196Zwu-0006Bj-00
	for freebsd-questions@freebsd.org; Fri, 18 Apr 2003 19:46:57 +0200
Message-ID: <3EA0395D.6050704@danielgraupner.de>
Date: Fri, 18 Apr 2003 19:43:57 +0200
From: Daniel Graupner <listen@danielgraupner.de>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; de-AT;
	rv:1.3) Gecko/20030312
X-Accept-Language: de-at, de, en-us, en
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: pam and ssh
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: listen@danielgraupner.de
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Apr 2003 17:46:59 -0000

Hello,

I'm using pam_mysql for Password-Authentication. It works well with 
apache and samba. But ssh is a bit strange.

I did the following changes to the configfile /etc/pam.conf:
# OpenSSH with PAM support requires similar modules.  The session one is
# a bit strange, though...
sshd    auth    sufficient      pam_skey.so
sshd    auth    sufficient      pam_opie.so                     
no_fake_prompts
#sshd   auth    requisite       pam_opieaccess.so
#sshd   auth    sufficient      pam_kerberosIV.so               
try_first_pass
#sshd   auth    sufficient      pam_krb5.so                     
try_first_pass
#pam_unix durch mysql ersetzen
#sshd   auth    required        pam_unix.so                     
try_first_pass
sshd    auth    required        /usr/local/lib/pam_mysql.so     
host=filer ...
sshd    account required        /usr/local/lib/pam_mysql.so     
host=filer ...
sshd    account required        pam_unix.so
#sshd   password required       pam_permit.so
sshd    session required        pam_permit.so

Hmm, I really don't know what each line stands for.
The corresponding user in passwd exists (without password...this is 
stored in mysql).
After failed Authentication the following lines appeared in 
/var/log/messages:

Apr 18 17:27:16 filer sshd[845]: adding faulty module: 
/usr/local/lib/pam_mysql.so
Apr 18 17:27:16 filer sshd[845]: error: PAM: Module is unknown
Apr 18 17:27:46 filer sshd[849]: unable to 
dlopen(/usr/local/lib/pam_mysql.so)
Apr 18 17:27:46 filer sshd[849]: [dlerror: Shared object 
"libmysqlclient.so.12" not found]
Apr 18 17:27:46 filer sshd[849]: adding faulty module: 
/usr/local/lib/pam_mysql.so
Apr 18 17:27:46 filer sshd[849]: error: PAM: Module is unknown
Apr 18 17:27:55 filer sshd[854]: unable to 
dlopen(/usr/local/lib/pam_mysql.so)
Apr 18 17:27:55 filer sshd[854]: [dlerror: Shared object 
"libmysqlclient.so.12" not found]
Apr 18 17:27:55 filer sshd[854]: adding faulty module: 
/usr/local/lib/pam_mysql.so
Apr 18 17:27:55 filer sshd[854]: error: PAM: Module is unknown

Any Suggests?

Thanks, Daniel.

P.S. Freebsd 4.7, 4.8