Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 8 Apr 2002 12:39:29 -0500 (EST)
From:      "Philip M. Gollucci" <philip@p6m7g8.student.umd.edu>
To:        questions@FreeBSD.ORG
Cc:        cd@newc.com, <bmbintz@wam.umd.edu>, <cgross@wam.umd.edu>, <howardjp@wam.umd.edu>
Subject:   SU doesn't work
Message-ID:  <20020408121534.V35920-100000@p6m7g8.student.umd.edu>

next in thread | raw e-mail | index | archive | help
Please reply-to: gollucci@wam.umd.edu
All help is greatly appreciated. Thanks in advance.

I don't trust the mail at the moment and since I haven't gotten anything
from this list in a day I know somethings wrong.

**
*   I can't su from any user to any user. Either on the console or over
*   the network.
**

I've never seen this problem before and I use hundreds
of FBSD boxs 3.4 - 5.0-CURRENT. I generally at mimium, follow
http://people.freebsd.org/~jkb/howto.html  Which is I think the only
changes I made to the default install.  I dont' think thats the problem
though, because I've got at least 50 other boxes working with it.
I've cvsuped and rebuilt su, itself, as of about 1 hour ago.

I don't know if this has anything to do with it, but say I use pine, and
try to send a message, I get the following error after cntrl-x
[Mail not sent. Sending error: 451 4.0.0 collect: Cannot write ./dfg38C]
I don't know where ./ is, but I do have the right permissions in ~  I can
read mail just fine.

My only guess is from the su manpage, theres a problem getting the
ticket, but I'm not using kerberos.  So I'm all out of ideas.

Heres a lot of config stuff, if you need more let me know:
------------------------------------------------------------------------------

uname -a
FreeBSD sduwebship.student.umd.edu 4.5-RELEASE FreeBSD 4.5-RELEASE #0: Sat
Apr  6 11:35:06 EST 2002
philip@sduwebship.student.umd.edu:/usr/obj/usr/src/sys/WEBSHIP  i386

Notice the custom kernel (I do know this kernel works... using it elsewhere):
cat /usr/src/sys/i386/conf/WEBSHIP
#######################################################################################
#                                       MANDATORY
#######################################################################################
machine         i386                    # Architecture -IBM-PC
cpu             I586_CPU                # Pentium II
maxusers        32                      # param.c (system table size)
ident           WEBSHIP                 # Kernel Config File Name

options         GPL_MATH_EMULATE        # x87 Math Emulator
options         COMPAT_43               # 4.3BSD Code Base
########################################################################################
#                                       File Systems
########################################################################################
options         FFS                     # Fast File System
options         FFS_ROOT                # FFS usable as root device
options         MD_ROOT                 # Possible Root Device
########################################################################################
#                                       Hardware
########################################################################################
device          isa                     # ISA Controller
device          eisa                    # EIAS Controller - auto probing
device          pci                     #

device          atkbdc0 at isa? port IO_KBD     # Keyboard and PS/2 Mouse Controller
device          atkbd0  at atkbdc? irq 1        # Keyboard

device          npx0    at nexus? port IO_NPX flags 0x0 irq 13  # Math
Emulation

device          vt0     at isa?                 #The pcvt console driver (vt220 compatible)
##### ATA & ATAPI
device          ata
device          atadisk                 # ATA Disk Drives
#### Serial Device
device          sio0    at isa? port IO_COM1 flags 0x10 irq 4

########################################################################################
#                                       Networking
#######################################################################################
options         INET                    # Internet communications
protocols

pseudo-device   ether                   # Generic Ethernet
pseudo-device   loop                    # Network loopback device

options         ICMP_BANDLIM                    # D.O.S protection

device          miibus                  # MII bus support
device          xl0             # <3Com 3C509-TPO EtherLink III

#######################################################################################
#                                       Miscellaneous
#######################################################################################
pseudo-device   pty                     # Pseudo ttys
pseudo-device   speaker                 # Play IBM BASIC-style noises out your speaker

#### Boot Time
options         USERCONFIG              # boot -c
options         VISUAL_USERCONFIG       # boot -c (visual)


### Shared Memory
options         SYSVSHM                 #SYSV-style shared memory
options         SYSVMSG                 #SYSV-style message queues
options         SYSVSEM                 #SYSV-style semaphores



df -h
Filesystem    Size   Used  Avail Capacity  Mounted on
/dev/ad0s1a   246M    39M   188M    17%    /
/dev/ad0s1f   246M    52K   226M     0%    /tmp
/dev/ad0s1g   3.9G   1.0G   2.6G    29%    /usr
/dev/ad0s1h   845M    60M   717M     8%    /usr/home
/dev/ad0s1e   246M   3.4M   223M     1%    /var
procfs        4.0K   4.0K     0B   100%    /proc

mount
/dev/ad0s1a on / (ufs, local)
/dev/ad0s1f on /tmp (ufs, local, nosuid)
/dev/ad0s1g on /usr (ufs, local, nosuid)
/dev/ad0s1h on /usr/home (ufs, local, nosuid)
/dev/ad0s1e on /var (ufs, local, nosuid)
procfs on /proc (procfs, local)

cat /etc/auth.conf
#
# $FreeBSD: src/etc/auth.conf,v 1.4.2.1 2001/07/13 14:37:26 dd Exp $
#
# This file contains information on what types of authentication to use.
# It is just the beginnings of a greater scheme.

# crypt_default =       md5 des
# auth_list     =       passwd kerberos

auth_list       =       passwd

cat /etc/sysctl.conf
# $FreeBSD: src/etc/sysctl.conf,v 1.1.2.2 2001/12/19 17:52:17 ru Exp $
#
#  This file is read when going to multi-user and its contents piped thru
#  ``sysctl'' to adjust kernel values.  ``man 5 sysctl.conf'' for details.
#
net.inet.tcp.log_in_vain=1
net.inet.udp.log_in_vain=1

cat /etc/rc.conf
ifconfig_xl0="inet xxx.xxx.xxx.xxx  netmask 255.255.255.0"
defaultrouter="xxx.xxx.xxx.xxx"
hostname="host.com"

kern_securelevel="3"
kern_securelevel_enable="YES"

linux_enable="YES"

portmap_enable="NO"
sendmail_enable="NO"
inetd_enable="NO"
inetd_flags="-l -R 1024"
nfs_reserved_port_only="YES"
nfs_server_enable="NO"

sshd_enable="YES"
syslogd_enable="YES"
syslogd_flags="-s -s"

check_quotas="YES"




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020408121534.V35920-100000>