[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pam-list
Subject:    RE: The infamous "check pass; user unknown"
From:       "Tay, Gary" <Gary_Tay () platts ! com>
Date:       2005-04-29 8:24:13
Message-ID: A04B6AE6ED3BD742B64D5B17093F64E2014147FC () IMSSGPX01 ! ims ! mhm ! mhc
[Download RAW message or body]

So far I have seen these "check pass" msgs when doing console gui login
(gdm/login), I guess some binaries in the background were running as
root prilvileges.

If you have "rootdn" defined in /etc/ldap.conf may be you could provide
a /etc/ldap.secret, pls "chmod 400" this file, and see if it would make
a difference.

I noticed that when I finally got "automount" to work with LDAP maps
(OpenLDAP and/or SUN ONE DS5.2), I stopped seeing these messages, no
sure if it is just pure coincidence?

Gary

-----Original Message-----
From: pam-list-bounces@redhat.com [mailto:pam-list-bounces@redhat.com]
On Behalf Of Oliver Schulze L.
Sent: Thursday, April 28, 2005 11:56 PM
To: pam-list@redhat.com
Subject: The infamous "check pass; user unknown"


Hi,
I don't know if this is the correct list for this, but this is my
problem.

I have Linux (RH9/Fedora/RHEL4) setup with ldap for local accounts, that
is, for replacing the /etc/passwd with ldap.

All is working correctly. I have run 'authconfig' and the program
configured /etc/ldap.conf and /etc/nsswitch.conf

The problem is that in /var/log/messages I get this 2 lines for every 
*sucessfull*
login. That is for every kind of login: console, pop3, imap, ssh, etc

Apr 28 11:53:00 server app(pam_unix)[13817]: check pass; user unknown
Apr 28 11:53:00 server app(pam_unix)[13817]: authentication failure; 
logname= uid=0 euid=0 tty= ruser= rhost=

The string server is the hostname, the string app is the application 
that the user used
for login in, like login, sshd, dovecot, etc

I wonder if there is a solution for this or is some kind of limitation 
or a message
that can not be supressed using the convination of pam/ldap/nss_ldap ?

Many thanks
Oliver

-- 
Oliver Schulze L.
<oliver@samera.com.py>

_______________________________________________
Pam-list mailing list
Pam-list@redhat.com https://www.redhat.com/mailman/listinfo/pam-list

_______________________________________________
Pam-list mailing list
Pam-list@redhat.com
https://www.redhat.com/mailman/listinfo/pam-list
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic