From owner-freebsd-current Sat Aug 18 10: 2:58 2001 Delivered-To: freebsd-current@freebsd.org Received: from arb.arb.za.net (www.tarmactroopers.co.za [196.7.148.4]) by hub.freebsd.org (Postfix) with ESMTP id 4FCC337B409 for ; Sat, 18 Aug 2001 10:02:50 -0700 (PDT) (envelope-from mark@grondar.za) Received: (from uucp@localhost) by arb.arb.za.net (8.11.3/8.11.3) with UUCP id f7IH2M989814; Sat, 18 Aug 2001 19:02:22 +0200 (SAST) (envelope-from mark@grondar.za) Received: from grondar.za (localhost [127.0.0.1]) by grimreaper.grondar.za (8.11.5/8.11.4) with ESMTP id f7IGhL905559; Sat, 18 Aug 2001 17:43:22 +0100 (BST) (envelope-from mark@grondar.za) Message-Id: <200108181643.f7IGhL905559@grimreaper.grondar.za> To: Robert Sexton Cc: freebsd-current@FreeBSD.ORG Subject: Re: help! su(1) is still broken References: <20010817161005.B30700@kudra.com> In-Reply-To: <20010817161005.B30700@kudra.com> ; from Robert Sexton "Fri, 17 Aug 2001 16:10:05 EDT." Date: Sat, 18 Aug 2001 17:43:21 +0100 From: Mark Murray Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG There is a recen-ish fix that may sort this out. Re-sup and build again... M > I cvsupped earlier in the week (august 9th) for the first time in > about 3 weeks. The pam changes seem to have broken su on my machine. > I'm using the default pam.conf (via mergemaster), so I would assume > that it should work. I can't seem to tweak it into behaving. I > searched the list, but moving libpam to /compat/lib didn't work > for me. The best clue so far is the contents of my security log > (I turned on debugging). pam_wheel seems to be working, but pam_unix > blows in completely: > > Aug 16 12:06:07 su: pam_unix: pam_sm_authenticate: Options processed > Aug 16 12:06:07 su: pam_unix: pam_sm_authenticate: Got user: toor > Aug 16 12:06:07 su: pam_unix: pam_sm_authenticate: Doing real authentication > Aug 16 12:06:10 pam_unix: pam_sm_authenticate: Got password > Aug 16 12:06:10 su: pam_unix: pam_sm_authenticate: Encrypted passwords are: **NuIxEpaVQeE & * > Aug 16 12:06:10 su: pam_unix: pam_sm_authenticate: returning PAM_AUTH_ERR > > I trimmed the lines a little. The thing that makes no sense here is > that I'm using md5 passwords. When I login as toor on the console, > pam_unix does the right thing. So perhaps it some sort of bizarre > crypto problem. I really don't know where to go next, or what to zap > and re-build, so any suggestions would be greatly appreciated. > > -- > Robert Sexton, robert@kudra.com > No one told me that it could not be done, and so I did it. - Jack Kloepfer > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-current" in the body of the message -- Mark Murray Warning: this .sig is umop ap!sdn To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message