search for: pam_

auth-pam.c declares some new functions in the pam_ namespace that are not part of PAM. pam_password_change_required() pam_msg_cat() pam_cleanup_proc() Purely to avoid any possible future problems I would suggest changing these so they do not being with pam_, suggestions include: __ssh_pam_msg_cat() ssh_pam_msg_cat() do_pam_msg_cat() cat_pam_...

...it up is working with me to find out why /var/log/messages is getting flooded with Oct 26 11:01:06 <servername> kernel: type=1105 audit(1477494066.569:642430): pid=108551 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0 msg='op=PAM:session_open grantors=pam_keyinit,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_krb5,pam_xauth acct="<user>" exe="/usr/bin/su" hostname=? addr=? terminal=? res=success' Oct 26 11:01:06 <servername> kernel: type=1106 audit(1477494066.620:642431): pid=108548 uid=0 auid=4294967295 ses=42949...

...idfile fd = [0-9]+\)$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ /usr/sbin/cron\[[0-9]+\]: \(CRON\) INFO \(Running @reboot jobs\)$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ /usr/sbin/cron\[[0-9]+\]: \(CRON\) INFO \(Skipping @reboot jobs -- not system startup\)$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ CRON\[[0-9]+\]: \(pam_[[:alnum:]]+\) session opened for user [[:alnum:]-]+ by \(uid=[0-9]+\)$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ CRON\[[0-9]+\]: \(pam_[[:alnum:]]+\) session closed for user [[:alnum:]-]+$ which does not make sense. Generally, "paranoid" excludes fewer items from a listing, not more. Best,...

I recent upgraded to 2.2.8, which went fine. When I checked smbclient -L firewall, I saw I Lost my printer share. I am using CUPS v1.1.3 for printing. When I went back to 2.2.7a it reappeared. 2 questions: 1> Why did it do this? I ./configured it --enable-cups- --with-pam_(smb) 2> Is there and advantage of upgrading such a small step? Or are there a big enough issues to warrant this action? TIA Kev

>Neither the Sun PAM documentation nor the Linux-PAM documentation >describe the semantics of PAM_REINITIALIZE_CREDS in any useful detail. I would agree it is vague, but then that is also a problem with the XSSO document (http://www.opengroup.org/onlinepubs/008329799/) >Could we please have a clarification on the semantics of >PAM_CRED_ESTABLISH vs. the semantics of PAM_REINITIALIZE_CRED...

...ind out why > /var/log/messages is getting flooded with > Oct 26 11:01:06 <servername> kernel: type=1105 > audit(1477494066.569:642430): pid=108551 uid=0 auid=4294967295 > ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0 > msg='op=PAM:session_open > grantors=pam_keyinit,pam_keyinit,pam_limits,pam_ > systemd,pam_unix,pam_krb5,pam_xauth > acct="<user>" exe="/usr/bin/su" hostname=? addr=? terminal=? res=success' > Oct 26 11:01:06 <servername> kernel: type=1106 > audit(1477494066.620:642431): pid=108548 uid=0 auid...

Package: logcheck Version: 1.2.54 Severity: normal In the file ignore.d.paranoid/cron there are the rules ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ CRON\[[0-9]+\]: \(pam_[[:alnum:]]+\) session opened for user [[:alnum:]-]+ by \(uid=[0-9]+\)$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ CRON\[[0-9]+\]: \(pam_[[:alnum:]]+\) session closed for user [[:alnum:]-]+$ to ignore lines like 10:17:01 at 04-03-2007 tooar CRON[6356]: (pam_unix) session opened for user root by (uid=0) 10...

On Mon, 22 Nov 1999, Philip Brown wrote: > [ Marc G. Fournier writes ] > > debug("PAM_retval(open_session) about to run"); > > pam_retval = pam_open_session((pam_handle_t *)pamh, 0); > > > > > =========================================== > > > > so, its looking like I'm authenticated properly, but when trying to set up > > the whole...

...dules and not at all (by me) on non-Linux systems (I put out test requests on snapshots of this, but nobody responded...) On the other hand, this code has been shipping and working in FreeBSD for a while. For those interested, this is pretty much exactly what is in FreeBSD's tree, with a few s/pam_xxx/sshpam_xxx/ substitutions. These are to avoid potential namespace clashes against the PAM library itself. I have no idea whether there are any such conflicts in the symbols in auth-pam.c, but we made a similar change in the old auth-pam.c quite a while ago at the request of someone at Sun. Also...

Hi, I've recently had the pleasure of compiling OpenSSH for an older Linux 2.0/libc 5 machine. It comes with an older version of PAM, and the configure script rightfully triggers HAVE_OLD_PAM. I've found that some PAM_*_CRED #defines have changed, and this prevents auth-pam.c from compiling, so I made the obvious fix. The attached patch is against OpenSSH 2.9p2. Things to consider: - Is this generic? Do all old PAM installations behave the same way? - Is it better to patch defines.h? Or another place? - Is it...

25 Mar 2001 pam_smbpass is a PAM module which can be used on conforming systems to keep the smbpasswd (Samba password) database in sync with the unix password file. PAM (Pluggable Authentication Modules) is an API supported under some Unices, such as Solaris, HPUX and Linux, that provides a generic interface to aut...

...ependingO|994 | nThis| | ------- Additional Comments From dtucker at zip.com.au 2005-05-22 11:03 ------- I've been thinking about this. It's too late for 4.1p1, but I think the right way to fix this is to split up the do_pam_setcred() and do_pam_session() calls, and hook the do_pam_session calls into the login/logout recording in loginrec.c (to be called from the monitor). The existing loginmsg handling would allow any messages returned by PAM to be sent to the user. This would allow per-session login recording and wo...

...rting different programs remains and is worst since the last zypper dup. I found this error still related to nouveau when the two screen got corrupted ov 20 22:37:07 hpprol2 kernel: audit: type=1105 audit(1448055427.213:154): pid=2624 uid=1000 auid=1000 ses=1 msg='op=PAM:session_open grantors=pam_limits,pam_unix,pam_umask,pam_systemd,pam_gnome_keyring,pam_ Nov 20 22:39:12 hpprol2 kernel: nouveau 0000:0a:00.0: fifo: PBDMA0: 80000000 [] ch 30 [007e6ab000 kwin_x11[2097]] subc 0 mthd 0000 data 00000000 Nov 20 22:39:12 hpprol2 kernel: nouveau 0000:0a:00.0: fifo: PBDMA0: 80040000 [] ch 30 [007e6ab...

...de Axel Spallek Enviada em: sexta-feira, 19 de mar?o de 2004 05:41 Para: Samba Assunto: AW: [Samba] Samba3 with W2K Native Mode Hi. I have news. The Problem with 3.0.2-29 persisted, so I compiled 3.0.2a. ./configure --with-acl-support --with-winbind --with-ldap --with-ldapsam --w ith-pam --with-pam_smbpass --with-krb5=/usr/local --with-ads One problem after that was the missing pam_winbind.so used by nssswitch.conf(?). Now I am as far as with 2.0.2-29. I can get an kinit Administrator-Ticket and can do a net join ads. But when I try to click on s7 in the Network-Section of S4 I get a [2004/0...

Hi. I use Samba 3.0.2-29 on Server S7. In our network is a W2K Server named S4 running in Native Mode, Domain Name hel.lan. I tried to join the S4-Domain hel.lan. s7:~ # kinit Administrator@HEL.LAN Administrator@HEL.LAN's Password: s7:~ # net ads join [2004/02/27 08:20:54, 0] libads/ldap.c:ads_add_machine_acct(1006) Host account for s7 already exists - modifying old account Using short