Displaying 20 results from an estimated 10000 matches similar to: "nologin"
2014 Apr 18
1
doveadm auth and the "nologin" extra field
Hello,
Still busy with details...
Considering, as in my previous example, a password_query returning '!' or NULL for the "nologin" column, depending on an account's status (suspended or not).
Let's consider a suspended user "some.user".
In the case of a successful authentication, one has:
sh-3.2# doveadm auth test some.user goodpassword; echo $?
passdb:
2013 Jan 31
3
Userdb passwd and 'nologin' users
I am running Dovecot with system users (userdb passwd), but some of
those users don't have shell accounts on the IMAP server so their shell
on that machine is set to /usr/sbin/nologin. Currently I am using
maildirs and this is not a problem, but I am in the process of switching
to dbox which means I will need a cronjob running 'doveadm purge -A'.
During testing I found that those
2010 Jan 11
2
/etc/nologin must be world-readable which is not totally clear
hi, the man page for sshd(1) says about /etc/nologin: "The file
should be world-readable". However, nologin has no effect if it's not
readable by the connecting user:
if (pw->pw_uid)
f = fopen(_PATH_NOLOGIN, "r");
if (f) {
/* /etc/nologin exists. Print its contents and exit. */
...
...
return(254)
if root has a
2010 Jan 21
2
nologin in auth proto version 1.1
I notice that the nologin parameter for the AUTH command is gone in
version 1.1 of Dovecot Authentication Protocol.
nologin was added in 1.1, so that authentication client could indicate
that there will be no subsequent master requests to retrieve user info.
Could we have nologin back please?
Kirill
2001 Jan 20
1
/etc/nologin and Solaris PAM bug
My apologies if this has already been discussed. I looked through the
mailing list archives and couldn't see any mention of this problem. I
compiled and installed openssh-2.3.0p1 on a sparc running SunOS 5.7, and
while I was testing it to make sure everything was working properly, I
noticed that when I used PAM to authenticate, rather than /bin/login, sshd
was not honoring /etc/nologin.
I
2019 Jan 10
3
vsftpd rejects users set to nologin
On Thu, 10 Jan 2019 at 16:09, Kenneth Porter <shiva at sewingwitch.com> wrote:
> I updated to CentOS 7.6 and something must have changed in the base OS
> setup that prevents vsftpd from allowing logins for accounts with
> /sbin/nologin as their shell. I had to add that to /etc/shells so that
> such
> accounts could FTP again. That file is in the setup package. Did it
>
2007 Jan 22
2
nologin not working with openssh >= 4.3 and authentication != password
Hi developers,
today I tried to disable logins to an ssh server by putting a nologin
file into /etc. This only worked for logins that use the password
authentication mechanism. publickey-based authentications still
succeeded and the users were allowed into the system. This seems
straightforward to me since openssh 4.3 disabled the evaluation of
/etc/nologin in favour of pam_nologin but
2013 Jan 23
3
dovecot 2.1.13, proxy and nologin extras field
Hi at all,
in our test environment, I'm playing with dovecot 2.1.13 configured as
imap/pop/managesieve proxy. It is configured to authenticate users with
ldap and it works very well.
Now, I'd like to temporary disable some users's login, because we are
moving to another storage, and I wouldn't stop imap service at all.
I've found on Dovecot wiki that I could use
2005 May 25
5
[Bug 1045] Missing option for ignoring the /etc/nologin file
http://bugzilla.mindrot.org/show_bug.cgi?id=1045
Summary: Missing option for ignoring the /etc/nologin file
Product: Portable OpenSSH
Version: 4.0p1
Platform: All
OS/Version: Linux
Status: NEW
Severity: enhancement
Priority: P2
Component: sshd
AssignedTo: bitbucket at mindrot.org
2000 Aug 01
1
RSA authentication bypassing /etc/nologin
Hello everyone,
I noticed recently that when I had /etc/nologin in place on my
server I couldn't log in when I authenticated via passwords, but when I used
RSA authentication I was able to log in no problem. I looked through the
source, and I think I might see where the problem is. I have a Linux system,
so sshd was compiled with PAM support. Using normal authentication, the
pam_nologin
2016 Nov 21
4
nologin + reason -> logging reason
Hi.
I'm using nologin with own reason [1]. That works fine. For example pop3
client gets nice message like "-ERR [AUTH] Account is locked. Please contact
support."
Unfortunately maillog lacks information details about why user was not allowed
to log in.
pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<testuser>,
method=LOGIN, rip=1.1.1.1, lip=2.2.2.2,
2003 Sep 16
1
3.6.1p1/SNAP-20030910, AIX & /etc/nologin (similar to bug #178)
I'm seeing a problem under AIX (4.3.3, 5.1, 5.2) very similar to bug
#178. It occurs with both 3.6.1p1 and openssh-SNAP-20030910.
If /etc/nologin is present, a session requesting a pty will hang,
apparently when the sshd parent tries to close the pty slave. As in
bug #178, adding a brief sleep to the child sshd anytime after the fork
seems to clear up the problem (though I agree that this
2018 Jul 19
1
Stopping login via "nologin" parameter
Hello,
I have a basic e-mail server with Postfix 3.1 and Dovecot 2.2.22.
I am using a passwd-file for both userdb and passdb:
/etc/dovecot/dovecot.conf
userdb {
driver = passwd-file
args = /etc/dovecot/passwd
}
passdb {
driver = passwd-file
args = /etc/dovecot/passwd
}
}
In the passwd file, I want to have
2004 Sep 09
1
ssh vs /sbin/nologin
If the shell of user alpha is /sbin/nologin
When use rsync with ssh mode, is it possible for alpha to use rsync
to backup data?
I don't permit alpha to login the backup server.
Thanks very much!
Best Regards!
Jacky Kim
.
2016 Nov 21
1
nologin + reason -> logging reason
On Monday 21 of November 2016, @lbutlr wrote:
> On Nov 21, 2016, at 7:39 AM, Arkadiusz Mi?kiewicz <arekm at maven.pl> wrote:
> > reason is the only thing in maillog that allows to distinguish why user
> > was not allowed to log in.
>
> Um? the only thing? How about where you set the reason in the first place?
That "first" place is constantly changing
2003 Jun 25
2
openssh-3.6.1p2-passexpire20.patch prevents /etc/nologin display on AIX
Hi there,
I have just compiled up 3.6.1p2 both with and without Darren Tuckers
passexpire patch.
However, with the patch applied /etc/nologin isn't displayed to users (on
AIX 5.1 / PSSP)
The patched vesion seems to fail with "illegal user" - some parts of a debug
3 log...
debug1: userauth-request for user ade45 service ssh-connection method none
debug1: attempt 0 failures 0
2010 Jun 12
2
Problems with ldap groups in share folders ACCESS_DENIED
Hi I have been working all week with samba 3.4.7 in Centos 5.5
PDC(3.4.7) with LDAP backend+Centos 5.5(3.4.7) BDC with LDAP slave.
I already have 5 clients join.
1 Windows XP
1 Windows 7 UE
1 Centos 5.5 Desktop
1 Ubuntu 9.x
1 Centos 5.5
I can browse inside windows and see my clients, access some shares. I
want to create private shares inside my PDC, I use:
force group
valid users
write list
2005 Mar 21
2
SAMBA3 + LDAP = PDC => ROUND 4 ;o)
Okay
I try this thing :
mastok:/etc/samba # smbldap-useradd root
mastok:/etc/samba # smbldap-usermod -u 0 -g 0 root
mastok:/etc/samba # smbldap-usermod -a root
mastok:/etc/samba # smbldap-passwd root
#####
Administrator:x:998:512:Netbios Domain
Administrator:/home/data1/samba/Administrator:/sbin/nologin
nobody:x:999:514:nobody:/dev/null:/sbin/nologin
root:x:0:0:System
2014 Apr 14
0
About the "nologin" extra field
Hello,
While experimenting with the "nologin" extra field, I met a possibly overlooked behavior.
Let's suppose the user database has those two columns:
enabled: the user may/may not login (account active/not active)
nologin: NULL if the mailbox is available, '!' if it is
currently suspended (for maintenance reasons)
The password_query:
password_query =
SELECT
2005 Nov 05
1
last command shows entries for denied logins
Hello All,
Im using OpenSSH 4.2p1. Suppose I disable non-root logins to my system
through /etc/nologin file, SSH writes an entry for the non-root user in wtmp
file. This is because the writing in wtmp file happens in parent process
where checking of nologin file happens in the child one. I like to know
whether we should put an entry in wtmp file for such denied logins.
Any comments will be