Date: Sun, 30 Jan 2011 18:00:29 GMT From: Jamie Landeg Jones <jamie@bishopston.net> To: freebsd-ports-bugs@FreeBSD.org Subject: Re: ports/114825: pam module security/pam_abl not working Message-ID: <201101301800.p0UI0TJa058570@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR ports/114825; it has been noted by GNATS.
From: Jamie Landeg Jones <jamie@bishopston.net>
To: silver@ultrasoft.ee, jamie@bishopston.net, carlson39@llnl.gov,
bug-followup@FreeBSD.org, admin@lissyara.su
Cc: try_first_pass@catflap.bishopston.net, no_warn@catflap.bishopston.net,
pam_krb5.so@catflap.bishopston.net, sufficient@catflap.bishopston.net,
#auth@catflap.bishopston.net, jamie@bishopston.net
Subject: Re: ports/114825: pam module security/pam_abl not working
Date: Sun, 30 Jan 2011 17:57:52 +0000
As mentioned by the original submitter, but confused by an incorrect patch,
repeating the auth line in /etc/pam.d/sshd 'fixes' the problem!
i.e. this snippet:
#auth sufficient pam_krb5.so no_warn try_first_pass
#auth sufficient pam_ssh.so no_warn try_first_pass
auth required /usr/local/lib/pam_abl.so config=/usr/local/etc/pam_abl.conf
auth required /usr/local/lib/pam_abl.so config=/usr/local/etc/pam_abl.conf
auth required pam_unix.so no_warn try_first_pass
May this throw some light on the issue?
As I said in the PR, the exact same config on both my main host and the jail, but it's only
the jail that has the issue
Cheers,
Jamie
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201101301800.p0UI0TJa058570>