Displaying 20 results from an estimated 7000 matches similar to: "[Bug 117] New: OpenSSH second-guesses PAM"
2002 Feb 14
2
[Bug 117] OpenSSH second-guesses PAM
http://bugzilla.mindrot.org/show_bug.cgi?id=117
------- Additional Comments From djm at mindrot.org 2002-02-15 10:10 -------
> OpenSSH traditionally would not even start PAM, and
> now starts it specifying 'NOUSER' as the login name.
We have always used NOUSER, the recent patch just makes it consistent between
protocols 1 and 2.
> The second is to prevent username guessing
2002 Apr 16
5
[Bug 117] OpenSSH second-guesses PAM
http://bugzilla.mindrot.org/show_bug.cgi?id=117
------- Additional Comments From fcusack at fcusack.com 2002-04-16 23:27 -------
sshd should definitely not be using 'NOUSER'. The correct thing is to use
the username, regardless of whether (pw) exists. I can't understand why
you would substitute the value 'NOUSER'.
------- You are receiving this mail because: -------
2003 Mar 10
1
[Bug 117] OpenSSH second-guesses PAM
http://bugzilla.mindrot.org/show_bug.cgi?id=117
------- Additional Comments From djm at mindrot.org 2003-03-10 11:57 -------
Created an attachment (id=245)
--> (http://bugzilla.mindrot.org/attachment.cgi?id=245&action=view)
Use supplied username in pam_start calls always
Make sshd always use supplied username (even if it is invalid) in calls to PAM
------- You are receiving this
2003 May 14
0
[Bug 117] OpenSSH second-guesses PAM
http://bugzilla.mindrot.org/show_bug.cgi?id=117
djm at mindrot.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|ASSIGNED |RESOLVED
Resolution| |FIXED
------- Additional Comments From djm at mindrot.org 2003-05-14 10:26
2006 Jan 17
2
OpenSSH, Radius, PAM & NOUSER issue
Hi !
Sorry to bring back the infamous "NOUSER" in the conversation but I didn't get the workaround on that problem.
Firstly, I'm using :
- openssh-3.1p1-15 which is the version which comes by default with my Red Hat Linux Advanced Server release 2.1AS.
- I'm using PAM, set up to use radius. Please find below the /etc/pam.d/sshd file :
#%PAM-1.0
auth
2004 Dec 28
1
PAM sending wrong username to Winbind (fwd)
Hi All,
I have tried logging into ftp using my NT username and password and it
works. It is only SSH which has this problem.
http://216.109.117.135/search/cache?p=pam+NOUSER&ei=UTF-8&fl=0&u=www.publicsource.apple.com/darwinsource/10.0.4/OpenSSH-9/openssh/auth2.c&w=pam+nouser&d=E6EA31C37E&icp=1&.intl=us
The above link gave me this hint. Found it while looking for
2004 Dec 28
0
PAM sending wrong username to Winbind
Hi All,
I am unable to authenticate users through pam_winbind.
"wbinfo -u", "wbinfo -g", "getent passwd", "getent group", "wbinfo -a
DOMAIN\\Administrator%password" all work and suggest that samba and
winbind are correctly configured.
For some strange reason PAM seems to be sending Winbind "NOUSER" as the
username to authenticate
2002 Feb 13
5
[Bug 114] Invalid users vs. PAM (protocol 1 only (?))
http://bugzilla.mindrot.org/show_bug.cgi?id=114
------- Additional Comments From djm at mindrot.org 2002-02-13 23:00 -------
Created an attachment (id=24)
Fake username for invalid ssh protocol 1 users
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
2007 Jul 27
1
MRTG with 14all.cgi on centos 5
Hi,
I have setup MRTG with 14all.cgi cgi script.
I downloaded it from below URL.
http://my14all.sourceforge.net/14all-1.1.txt
and did only below 3 changes to that file. those can be seen in BOLDletters.
# if MRTG_lib.pm (from mrtg) is not in the module search path (@INC)
# uncomment the following line and change the path appropriatly:
#use lib qw(/usr/local/mrtg-2/lib/mrtg2);
use lib
2004 Jul 14
0
winbind flaky authentication..
I've got weird things happening with winbind authentication - sometimes
it works, sometimes it doesn't.
Sometimes it works for one username, and not for the other, sometimes it
works for both, sometimes neither...
I'm a departmental admin trying to authenticate against our central
windows domain - so I've no control of the windows side. The client
machine is a fresh redhat
2004 Jul 01
4
[Bug 559] PAM fixes
http://bugzilla.mindrot.org/show_bug.cgi?id=559
------- Additional Comments From dtucker at zip.com.au 2004-07-01 13:40 -------
(From update of attachment 292)
OK, except for the last bit, I think this is all done.
>+#ifdef USE_PAM
>+ options.permit_empty_passwd &&
>+#endif
This is done in auth-passwd.c:
if (*password == '\0' &&
2013 Nov 04
1
is sssd *faster* than samba4's builtin winbind?
Using samba 4.0.9 as an AD DC (no other domain servers).
Since my UIDs and GIDs have changed, I was doing cleanup:
find /srv/svn/ -xdev '(' -nouser -o -nogroup ')' -ls
I noticed this was very slow -- iostat reported only about 2tps and
50kB/s to my disks. So I timed it with nsswitch.conf users & groups set
to "files" vs. "files winbind":
# with
2006 Jul 05
1
Could not get shadow information for NOUSER
Hello all,
I have a CentOS 4.2 server that gives me these error messages in my
/var/log/secure file, I realise that these are SSH attacks, but where does
the extra line "Could not get shadow information for NOUSER" come from?
This doesn't make any sense. I have many servers running CentOS 4.2, but
don't get this error message on any others. I hate junk in my logs. Is
there
2001 Mar 06
1
Mapping SMB usernames to SCO users
I have about 40 SCO 5.0.5 servers on which I am installing samba (I've
tried 2.0.3 and 2.0.7, I'm having the same trouble with both).
For my example, assume the following:
NT domain: ORLANDO_ADMIN
NT PDC: ORLANDO_PDC
NT user: Administrator (I have tried other users as well)
samba server: CLASS
guest account (on UNIX server): nouser
A generic Unix account exists called samba.
My goal
2007 Apr 03
2
Coding for contrasts in unbalanced designs
Dear list members,
I want to use a GLM with an unbalanced factor and continuous variables.
My factor F has 12 unbalanced levels:
2006 Jul 26
2
Questions regarding complex searching
I am pretty new to Ruby on Rails, but have been running into difficulty
with getting search to do what I want.
What I plan to do is to have, say, 10 fields in a form with a submit
button. The user can select which ones they fill out, and when they
click submit the database is searched appropriatly. That is, if the
name and state fields were both filled it, a page would display entries
that
2003 Dec 14
1
fakepw auth.c question
this is at the bottom of auth.c. What is it?
struct passwd *
fakepw(void)
{
static struct passwd fake;
memset(&fake, 0, sizeof(fake));
fake.pw_name = "NOUSER";
fake.pw_passwd =
"$2a$06$r3.juUaHZDlIbQaO2dS9FuYxL1W9M81R1Tc92PoSNmzvpEqLkLGrK";
fake.pw_gecos = "NOUSER";
fake.pw_uid = -1;
fake.pw_gid = -1;
fake.pw_class =
2001 Feb 16
1
OpenSSH 2.3.0p1 port to BSDI BSD/OS
BSD/OS 4.2 comes with OpenSSH 2.1.1p4, patched to support BSDI's
authentication library. However, BSDI's patches have several
problems:
1. They don't run the approval phase, so they can allow users to login
who aren't supposed to be able to.
2. They don't patch configure to automatically detect the BSDI auth
system, so they're not ready to use in a general portable
2010 Jun 15
1
help biglm.big.matrix; problem with weights
Hello colleagues,
I have tried to use the package biglm. I want to specify a
multivariate regression with a weight.
I have imported a large dataset with the library(bigmemory). I load
the library (biglm) and specified a regression with a weight. But I
get everytime a error message like ?object not found? or ?`weights'
must be a formula? or "error in eval(expr, envir, enclos)". I
2001 Jan 23
0
using rhosts on AIX
Hi,
i'm trying to use rhosts with RSA to allow me to run commands as
root. My AIX system is setup to not allow remote logins using the file
/etc/security/user. On my other systems, i can use rsh to run commands,
but i cannot login. When i try the same with ssh, it does not work.
i'm not really sure what i should be seeing in the debug output. To me,
it doesn't even look like it