Date: Mon, 25 Aug 2003 14:03:06 -0400 (EDT) From: "James F. Hranicky" <jfh@cise.ufl.edu> To: FreeBSD-gnats-submit@FreeBSD.org Subject: conf/55964: sshd: HostBasedAuthentication does not seem to work with NIS Message-ID: <200308251803.h7PI369T092518@myrtle.cise.ufl.edu> Resent-Message-ID: <200308251810.h7PIAJCF036933@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 55964
>Category: conf
>Synopsis: sshd: HostBasedAuthentication does not seem to work with NIS
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Mon Aug 25 11:10:18 PDT 2003
>Closed-Date:
>Last-Modified:
>Originator: James F. Hranicky
>Release: FreeBSD 5.1-CURRENT i386
>Organization:
University of Florida CISE Department
>Environment:
System: FreeBSD myrtle 5.1-CURRENT FreeBSD 5.1-CURRENT #1: Mon Aug 11 17:15:47 EDT 2003 root@myrtle:/private/freebsd-src/obj/private/freebsd-src/src/sys/CISEKERN i386
>Description:
When using HostBasedAuthentication with sshd, NIS does not appear to
be consulted. When /etc/netgroup is non-existent, empty, or containing
a '+', sshd prompts for a password. When /etc/netgroup contains valid
data (i.e., "ypcat -k netgroup > /etc/netgroup"), I am logged in without
a password.
I have the trusted netgroup in /etc/hosts.equiv.
However, I have determined that innetgr and {set,end,net}grent do appear
to consult NIS when called from a simple C program.
I have the following in /etc/nsswitch.conf:
passwd: nis files
group: nis files
>How-To-Repeat:
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200308251803.h7PI369T092518>