Date: Sat, 15 Sep 2001 11:55:27 -0300 From: "Conrado Vardanega" <cvspam@ig.com.br> To: "Bob Martin" <bob@buckhorn.net> Cc: <freebsd-stable@freebsd.org> Subject: Re: Disallowed any service (not ssh), part III Message-ID: <NDBBLGPICDCECKDGFCGFKENJCKAA.cvspam@ig.com.br> In-Reply-To: <3BA3483B.58E03871@buckhorn.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> The reason that we keep asking about /etc/pam.conf is that it is one of > the "common threads". /etc/hosts.allow and /etc/login.conf are the also > common to ftp, telnet and ssh. Moreover, pam.conf recently changed. (See > /usr/src/UPDATING for details). I understand. I've already seen UPDATING and pam.conf's changes came before 4.3-RELEASE, my first install. Anyway, I've double checked pam.conf and its up-to-date. > It would seem that you've already covered the bases. I can only think of > 2 other possible causes. First, these services are (at least in default > configurations) designed to refuse UID's of 0. The other thing that > comes to mind is that these services also require a valid home directory > and a valid shell. For example, if cvarda's shell is > /usr/local/bin/bash, and that shell is not in /etc/shells (clobbered by > mergemaster?) then the login would be refused. I'm trying to use common user accounts, and none of this situations applies because the SAME account is allowed to access ALL services from ony ONE host. All accounts are refused to all services from any other hosts. BTW, all accounts have allowed shells, have a existing home directory and UID is <> 0. :) --- Conrado Vardanega cvarda@ig.com.br http://go.to/conrado To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?NDBBLGPICDCECKDGFCGFKENJCKAA.cvspam>