Date: Wed, 9 Jul 2003 08:10:07 -0400 From: "Robin P. Blanchard" <Robin.Blanchard@gactr.uga.edu> To: "John De Boskey" <jwd@bsdwins.com>, <current@freebsd.org> Cc: "Jacques A. Vidrine" <nectar@freebsd.org> Subject: RE: Help diagnosing NIS breakage ? Message-ID: <EE3D3FBAFFCAED448C21C398FDAD91AC237474@EBE1.gc.nat>
next in thread | raw e-mail | index | archive | help
Given the lack of response on this, I fortunately was able to = 'downgrade' back to sources dated 08 june 2003. Low and behold, NIS users again = work. There is undoubtedly something awry in the the latest sources, as I can systematically recreate a 'broken' system. I will gladly provide shell = access to developers who wish to look into this. It would be nice to be able to = stay current on -CURRENT (heh). Thanks. >=20 > > ----- Robin P. Blanchard's Original Message ----- > > >=20 > > > Still pulling my hair out on this one...Updated to latest > > kern/world > > > this morning and NIS users are no longer working. > >=20 > > What -`date` version were you running where things worked > > before you did the 1st upgrade? > >=20 > > Can you provide the contents of your /etc/group, /etc/passwd > > (just the last two lines of each), and /etc/nsswitch.conf files? > >=20 > > Your demonstration below indicates that NIS is correctly > > setup and running, but that it is not correctly configured in=20 > > for system usage. > >=20 > > While I realize it doesn't help you, I am running the latest > > NIS code in a cluster and it works fine (FreeBSD 4.8 server,=20 > > various clients). >=20 > OK... Nsswitch.conf exists on neither machine here. I setup a=20 > test nsswitch.conf on the broken NIS box to use NIS but it=20 > didn't help at all. >=20 > 1) > On FreeBSD 5.1-CURRENT #0: Tue Jun 17 10:28:52 EDT 2003: > # ypcat passwd |fgrep robin=20 > robin:OeIS3xdIRAiQs:20292:30028::/home/robin:/bin/bash > # finger robin > Login: robin Name:=20 > Directory: /home/robin Shell: /bin/bash > Never logged in. > No Mail. > No Plan. > # id robin > uid=3D20292(robin) gid=3D30028(NSS) groups=3D30028(NSS),=20 > 30000(gactr), 30026(ITS) # tail -2 /etc/passwd=20 > nobody:*:65534:65534:Unprivileged user:/nonexistent:/sbin/nologin > +:*::::: > # tail -2 /etc/passwd=20 > nobody:*:65534:65534:Unprivileged user:/nonexistent:/sbin/nologin > +:*::::: > # tail -2 /etc/group=20 > nobody:*:65534: > +:*:0: >=20 >=20 > 2) > On FreeBSD 5.1-CURRENT #0: Mon Jul 7 11:33:56 EDT 2003 > # ypcat passwd |fgrep robin=20 > robin:OeIS3xdIRAiQs:20292:30028::/home/robin:/bin/bash > # finger robin > Login: robin Name:=20 > Directory: /home/robin Shell: /bin/bash > Last login Mon Jul 7 07:47 (EDT) on ttyp0 from 10.2.2.10 > No Mail. > No Plan. > # id robin > id: robin: no such user > # tail -2 /etc/passwd=20 > nobody:*:65534:65534:Unprivileged user:/nonexistent:/sbin/nologin > +:*::::: > # > # tail -2 /etc/group=20 > nobody:*:65534: > +:*:0: >=20 > And here's something else interesting on this 'broken' NIS box: >=20 > # ls -ald . > drwx--x--x 4 20292 NSS 4.0K Jun 13 13:34 ./ >=20 > So (via NIS) GID translation is working but not UID translation.... >=20 > Look forward to getting this solved... >=20 >=20 > >=20 > > -john > >=20 > > > Demonstration: > > >=20 > > > # ypcat passwd |fgrep robin > > > robin:OeIS3xdIRAiQs:20292:30028::/home/robin:/bin/bash > > > # ypcat group |fgrep robin=20 > > >=20 > >=20 > gactr::30000:holmesr,wrighta,prestonh,reagind,gankol,cafieroj,cahoonb, > > > pettigr > > > m,brantlek,thumat,dosterc,nate,robin,charles > > > ITS::30026:dosterc,nate,robin,charles > > > NSS::30028:dosterc,nate,robin,charles,test > > > # ps ax |fgrep ypbind > > > 79910 ?? Ss 0:00.03 ypbind > > > # ypwhich > > > GCDC2.gc.nat > > > # finger robin > > > Login: robin Name:=20 > > > Directory: /home/robin Shell: /bin/bash > > > Last login Mon Jul 7 07:47 (EDT) on ttyp0 from 10.2.2.10 > > > No Mail. > > > No Plan. > > >=20 > > > So NIS is 'working'...But: > > > # id robin > > > id: robin: no such user > > >=20 > > > And as a result, he (I) cannot login. > > >=20 > > > # su - robin ; tail -1 /var/log/auth.log > > >=20 > > > su: Sorry > > > Jul 7 13:59:29 ftp su: pam_acct_mgmt: error in service module > > >=20 > > > There's a truss and a ktrace (of the id command) available at: > > > ftp://ftp.gactr.uga.edu/incoming/id.tar.gz > > >=20 > > > Thanks in advance. > >=20 >=20
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?EE3D3FBAFFCAED448C21C398FDAD91AC237474>