From owner-freebsd-questions@freebsd.org Fri Sep 1 16:34:00 2017 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 8BD3DE190C3 for ; Fri, 1 Sep 2017 16:34:00 +0000 (UTC) (envelope-from dave.mehler@gmail.com) Received: from mail-oi0-x22f.google.com (mail-oi0-x22f.google.com [IPv6:2607:f8b0:4003:c06::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4ECCC7E184 for ; Fri, 1 Sep 2017 16:34:00 +0000 (UTC) (envelope-from dave.mehler@gmail.com) Received: by mail-oi0-x22f.google.com with SMTP id w10so6065231oie.1 for ; Fri, 01 Sep 2017 09:34:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=ggMW2gAvb0GeFYiUW83o3H95Xn9NqT5rY+/bnGmS+9A=; b=Ouqda3tps9E12wzXDKR7mxMGoa670Y8GYwiMYfAPZ9tijdsUyGn0q72v6RlnpLY6Cd HtqvJWgKJ5H+TSTAtUXEWhx3cHE3b00cvLTAdCnFKOsKxlRniXfGEGTyVYtFF1nRlm0s 6F0Al/OTOS9P9is3C4nSSYuxcSNzDXMwooXgrY1eTyTy2r4VoFeSIlpd/jpfH8cWHNG4 qU4DSLE64DjxPOW8xOXbw3Pz6YjTngUDVuBdLTsRfk7cqnM1KkJ/Lk8eGSWfj1Y/3FND uxFvfO1MpWnl7o16nXXlgxsX/gzjEWCgMTIZyJExgivMRpPipWK6Os2sLNR8h3wC/KeN 1opg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=ggMW2gAvb0GeFYiUW83o3H95Xn9NqT5rY+/bnGmS+9A=; b=F32JbScHjf51AOgsaM36h0DhXmyARU/4tmjLwzoOK7JZmolWUqK75llbHXUK0hDcxH bzcMmiK51MgyLvsQ9zOtOx+bX4RXuHYb2P40adQkDazomkWyjhschdrC9pKn5b0p4Eky 9MwpZxHbqHKxEQs5XRJfdC5i7pUZW2P7uQDThWchcOz8A/6oI3LGcWboZijxzffOpAxB VsQ3cEEGvaC0De7wXlTg7jfb7sUdIel2J1Zy8MIWjGiZi9YqMy5oQ5gTei4NO8YQLvsH 2zgIsVzYgp31uqX0aQLFcQfIGswdqtrpZX3jQXpNGUYik2jPgMMxgINZkp0bj3y2u+yl Yi1A== X-Gm-Message-State: AHPjjUgC7KGZz55mHdeAr0pqESyOJhjSEkajOUkryaqdcfYp9PN8yLJE nmfNaIcXe8WHju98XHF25DcVBuWRBQ== X-Google-Smtp-Source: ADKCNb6RuHdCCHPyGjjeh/D19+Z3vW6pKnI1eZFlpB6OkYb0KswOfRHt/pfEyWScdy2YiF7hVGj47ZfT+4KySsRbW/4= X-Received: by 10.202.214.6 with SMTP id n6mr2589045oig.179.1504283639362; Fri, 01 Sep 2017 09:33:59 -0700 (PDT) MIME-Version: 1.0 Received: by 10.157.35.230 with HTTP; Fri, 1 Sep 2017 09:33:58 -0700 (PDT) In-Reply-To: References: From: David Mehler Date: Fri, 1 Sep 2017 12:33:58 -0400 Message-ID: Subject: Re: latest sudo locks out a user To: Dylan Williams Cc: freebsd-questions Content-Type: text/plain; charset="UTF-8" X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Sep 2017 16:34:00 -0000 Hello everyone, Thank you for your responses. There have been no changes in the sudoers file, and the syntax on it is correct. The user is in the wheel group and in the sudoers file there's a line that says anyone in that group can do anything as long as they have the password. I've reset the password, hasn't fixed the issue. I've got logging going and I do see the user, the environment variables, and the command attempt, but nothing about an error, just nothing. The log file has 3 lines in it, the other files in that directory are empty. Could this possibly be a pam change? Thanks. Dave. On 9/1/17, Dylan Williams wrote: > Dave, > > What group is your user in and what permissions does that group (or the user > him/herself have) in the /usr/local/etc/sudoers file? > > Dylan. > >> On 1 Sep 2017, at 9:23 PM, David Mehler wrote: >> >> Hello, >> >> Has anything changed in the latest sudo? >> >> Two days ago on my 10.3 system I did a ports update and got a new >> version of sudo, v1.8.21. Since then a user who was able to log in by >> ssh, (using key-based not password logins), is now unable to use sudo >> to su to root. I enter the correct password and just get put back at >> my user prompt, nothing in the syslog. >> >> I've changed the password for that user nothing. >> >> I've looked at /usr/ports/UPDATING and didn't see anything related to >> sudo. >> >> If anyone has any ideas please let me know. >> >> Thanks. >> Dave. >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> https://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to >> "freebsd-questions-unsubscribe@freebsd.org" > >