From owner-freebsd-isp Sat Mar 4 14:44:23 2000 Delivered-To: freebsd-isp@freebsd.org Received: from dominik.saargate.de (ich.mag.frau.trapp.nonsensss.de [212.88.133.252]) by hub.freebsd.org (Postfix) with ESMTP id AED8D37B898 for ; Sat, 4 Mar 2000 14:44:20 -0800 (PST) (envelope-from domi@saargate.de) Received: from localhost (localhost [127.0.0.1]) by dominik.saargate.de (8.9.3/8.9.3) with ESMTP id XAA09712; Sat, 4 Mar 2000 23:24:15 +0100 (CET) (envelope-from domi@saargate.de) Date: Sat, 4 Mar 2000 23:24:15 +0100 (CET) From: Dominik Brettnacher To: "ndear@areti.net" Cc: freebsd-isp@freebsd.org Subject: Re: Weird error messages on screen In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 4 Mar 2000, ndear@areti.net wrote: > >> > Everytime someone telnets in and logs in, I get the following error > >on the > >> > console screen: > >> > machine_name login: no modules loaded for 'login' service > >> > machine_name login: auth_pam: Permission denied > >> What does your /etc/pam.conf look like? > It's blank/empty. Maybe you should create one like this (you can find it at /usr/src/etc/pam.conf): # Configuration file for Pluggable Authentication Modules (PAM). # # This file controls the authentication methods that login and other # utilities use. See pam(8) for a description of its format. # # Note: the final entry must say "required" -- otherwise, things don't # work quite right. If you delete the final entry, be sure to change # "sufficient" to "required" in the entry before it. # # $FreeBSD: /ctm/FreeBSD/anoncvs/cvs/src/etc/pam.conf,v 1.1.2.1 2000/01/06 13:57:58 markm Exp $ # If the user can authenticate with S/Key, that's sufficient; allow clear # password. Try kerberos, then try plain unix password. login auth sufficient pam_skey.so login auth requisite pam_cleartext_pass_ok.so #login auth sufficient pam_kerberosIV.so try_first_pass login auth required pam_unix.so try_first_pass # r-utils are broken; ensure this doesn't bother folk rshd auth sufficient pam_deny.so # Don't break startx xserver auth required pam_permit.so # XDM is difficult; it fails or moans unless there are modules for each # of the four management groups; auth, account, session and password. xdm auth required pam_unix.so #xdm auth sufficient pam_kerberosIV.so try_first_pass xdm account required pam_unix.so try_first_pass xdm session required pam_deny.so xdm password required pam_deny.so # If we don't match anything else, default to using getpwnam(). other auth required pam_unix.so try_first_pass other account required pam_unix.so try_first_pass -- Dominik - http://www.saargate.de/~domi/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message