[Cialug] pam troubleshooting

Jeff Davis jdavis at geolearning.com
Tue Jul 24 14:11:16 CDT 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Great idea Matt, I'll try that!

Matt Patterson wrote:
> what you can do is trace the process that you are connecting to.  That
> might show the missing library or config file.
> 
> Do the following:
> 
> strace -f -s512 -p <PID>
> 
> You'll see a whole bunch of stuff flying by when you go through the
> connection process.   If it is a missing file, you will see an
> open("filename_here")
> and then an error about a missing file a few lines later.
> 
> -Matt
> 
> 
> On Tue, 24 Jul 2007, Jeff Davis wrote:
> 
> No, the logs nothing unusual, and I can see the connection and I do
> get prompted for
> a password...I think I am missing a library or something, but since no
> errors show
> in the logs I'm not sure what is missing.
> 
> I'm still poking around though.  I thought I'd take a shot and ask,
> sometimes
> someone will say "Yeah, I had that problme and you need to do X."
> 
> 
> Matt Patterson wrote:
>>>> Do the logs show anything out of the oridnary?  Or anything at all about
>>>> a connection coming in?
>>>>
>>>> -Matt
>>>>
>>>> On Mon, 23 Jul 2007, kristau wrote:
>>>>
>>>>> On 7/23/07, Jeff Davis <jdavis at geolearning.com> wrote:
>>>>>> -----BEGIN PGP SIGNED MESSAGE-----
>>>>>> Hash: SHA1
>>>>>>
>>>>> <clip>
>>>>>> The short version of the problem is that I've added debug to my pam
>>>>>> modules,
>>>>>> edited my chroot.conf, etc. and all I see in the logs are success
>>>>>> messages.
>>>>>> But when I sftp as that user, i get prompted for a password and then
>>>>>> just a
>>>>>> connection closed.
>>>>> <snip>
>>>>>
>>>>> This kinda sorta sounds like the binaries for sftp or some other
>>>>> necessary component aren't located inside the chroot jail?  That'd be
>>>>> my guess, but I've never set this up.  It kinda sounds like what
>>>>> happens if you don't define a valid shell in /etc/passwd for a user
>>>>> then try to log in as that user.
>>>>>
>>>>> -- 
>>>>> Tired programmer
>>>>> Coding late into the night
>>>>> The core dump follows
>>>>>
>>>>> My GNUPG public key is available at
>>>>> http://www.kristau.net/public_key.asc
>>>>> _______________________________________________
>>>>> Cialug mailing list
>>>>> Cialug at cialug.org
>>>>> http://cialug.org/mailman/listinfo/cialug
>>>>>
>>>>>
>>>> _______________________________________________
>>>> Cialug mailing list
>>>> Cialug at cialug.org
>>>> http://cialug.org/mailman/listinfo/cialug
>>>>
_______________________________________________
Cialug mailing list
Cialug at cialug.org
http://cialug.org/mailman/listinfo/cialug
>>
>>
> _______________________________________________
> Cialug mailing list
> Cialug at cialug.org
> http://cialug.org/mailman/listinfo/cialug

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org

iD8DBQFGpk7UUVPJ6ufy+vIRAuCUAKCfqp/m30mKY3y3nR0SGoEJuxmVvACfTh97
+CpplVtR8fiRg4hV16lpMRM=
=bpQg
-----END PGP SIGNATURE-----


More information about the Cialug mailing list