similar to: [Bug 117] New: OpenSSH second-guesses PAM

http://bugzilla.mindrot.org/show_bug.cgi?id=117 ------- Additional Comments From djm at mindrot.org 2002-02-15 10:10 ------- > OpenSSH traditionally would not even start PAM, and > now starts it specifying 'NOUSER' as the login name. We have always used NOUSER, the recent patch just makes it consistent between protocols 1 and 2. > The second is to prevent username guessing

http://bugzilla.mindrot.org/show_bug.cgi?id=117 ------- Additional Comments From fcusack at fcusack.com 2002-04-16 23:27 ------- sshd should definitely not be using 'NOUSER'. The correct thing is to use the username, regardless of whether (pw) exists. I can't understand why you would substitute the value 'NOUSER'. ------- You are receiving this mail because: -------

http://bugzilla.mindrot.org/show_bug.cgi?id=117 ------- Additional Comments From djm at mindrot.org 2003-03-10 11:57 ------- Created an attachment (id=245) --> (http://bugzilla.mindrot.org/attachment.cgi?id=245&action=view) Use supplied username in pam_start calls always Make sshd always use supplied username (even if it is invalid) in calls to PAM ------- You are receiving this

http://bugzilla.mindrot.org/show_bug.cgi?id=117 djm at mindrot.org changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED ------- Additional Comments From djm at mindrot.org 2003-05-14 10:26

Hi ! Sorry to bring back the infamous "NOUSER" in the conversation but I didn't get the workaround on that problem. Firstly, I'm using : - openssh-3.1p1-15 which is the version which comes by default with my Red Hat Linux Advanced Server release 2.1AS. - I'm using PAM, set up to use radius. Please find below the /etc/pam.d/sshd file : #%PAM-1.0 auth

Hi All, I have tried logging into ftp using my NT username and password and it works. It is only SSH which has this problem. http://216.109.117.135/search/cache?p=pam+NOUSER&ei=UTF-8&fl=0&u=www.publicsource.apple.com/darwinsource/10.0.4/OpenSSH-9/openssh/auth2.c&w=pam+nouser&d=E6EA31C37E&icp=1&.intl=us The above link gave me this hint. Found it while looking for

Hi All, I am unable to authenticate users through pam_winbind. "wbinfo -u", "wbinfo -g", "getent passwd", "getent group", "wbinfo -a DOMAIN\\Administrator%password" all work and suggest that samba and winbind are correctly configured. For some strange reason PAM seems to be sending Winbind "NOUSER" as the username to authenticate

http://bugzilla.mindrot.org/show_bug.cgi?id=114 ------- Additional Comments From djm at mindrot.org 2002-02-13 23:00 ------- Created an attachment (id=24) Fake username for invalid ssh protocol 1 users ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.

Hi, I have setup MRTG with 14all.cgi cgi script. I downloaded it from below URL. http://my14all.sourceforge.net/14all-1.1.txt and did only below 3 changes to that file. those can be seen in BOLDletters. # if MRTG_lib.pm (from mrtg) is not in the module search path (@INC) # uncomment the following line and change the path appropriatly: #use lib qw(/usr/local/mrtg-2/lib/mrtg2); use lib

I've got weird things happening with winbind authentication - sometimes it works, sometimes it doesn't. Sometimes it works for one username, and not for the other, sometimes it works for both, sometimes neither... I'm a departmental admin trying to authenticate against our central windows domain - so I've no control of the windows side. The client machine is a fresh redhat

http://bugzilla.mindrot.org/show_bug.cgi?id=559 ------- Additional Comments From dtucker at zip.com.au 2004-07-01 13:40 ------- (From update of attachment 292) OK, except for the last bit, I think this is all done. >+#ifdef USE_PAM >+ options.permit_empty_passwd && >+#endif This is done in auth-passwd.c: if (*password == '\0' &&

Using samba 4.0.9 as an AD DC (no other domain servers). Since my UIDs and GIDs have changed, I was doing cleanup: find /srv/svn/ -xdev '(' -nouser -o -nogroup ')' -ls I noticed this was very slow -- iostat reported only about 2tps and 50kB/s to my disks. So I timed it with nsswitch.conf users & groups set to "files" vs. "files winbind": # with

Hello all, I have a CentOS 4.2 server that gives me these error messages in my /var/log/secure file, I realise that these are SSH attacks, but where does the extra line "Could not get shadow information for NOUSER" come from? This doesn't make any sense. I have many servers running CentOS 4.2, but don't get this error message on any others. I hate junk in my logs. Is there

I have about 40 SCO 5.0.5 servers on which I am installing samba (I've tried 2.0.3 and 2.0.7, I'm having the same trouble with both). For my example, assume the following: NT domain: ORLANDO_ADMIN NT PDC: ORLANDO_PDC NT user: Administrator (I have tried other users as well) samba server: CLASS guest account (on UNIX server): nouser A generic Unix account exists called samba. My goal

Dear list members, I want to use a GLM with an unbalanced factor and continuous variables. My factor F has 12 unbalanced levels:

I am pretty new to Ruby on Rails, but have been running into difficulty with getting search to do what I want. What I plan to do is to have, say, 10 fields in a form with a submit button. The user can select which ones they fill out, and when they click submit the database is searched appropriatly. That is, if the name and state fields were both filled it, a page would display entries that

this is at the bottom of auth.c. What is it? struct passwd * fakepw(void) { static struct passwd fake; memset(&fake, 0, sizeof(fake)); fake.pw_name = "NOUSER"; fake.pw_passwd = "$2a$06$r3.juUaHZDlIbQaO2dS9FuYxL1W9M81R1Tc92PoSNmzvpEqLkLGrK"; fake.pw_gecos = "NOUSER"; fake.pw_uid = -1; fake.pw_gid = -1; fake.pw_class =

BSD/OS 4.2 comes with OpenSSH 2.1.1p4, patched to support BSDI's authentication library. However, BSDI's patches have several problems: 1. They don't run the approval phase, so they can allow users to login who aren't supposed to be able to. 2. They don't patch configure to automatically detect the BSDI auth system, so they're not ready to use in a general portable

Hello colleagues, I have tried to use the package biglm. I want to specify a multivariate regression with a weight. I have imported a large dataset with the library(bigmemory). I load the library (biglm) and specified a regression with a weight. But I get everytime a error message like ?object not found? or ?`weights' must be a formula? or "error in eval(expr, envir, enclos)". I

Hi, i'm trying to use rhosts with RSA to allow me to run commands as root. My AIX system is setup to not allow remote logins using the file /etc/security/user. On my other systems, i can use rsh to run commands, but i cannot login. When i try the same with ssh, it does not work. i'm not really sure what i should be seeing in the debug output. To me, it doesn't even look like it