similar to: problem with poppassd

Hello, I did a quick change to the patched port of poppassd and am wondering if you think my code would introduce any potential problems. The idea is right after we check if the username exists, also check if the UID of that username is over 1000. I wanted to make sure that no one monkeys around with priveleged users once poppassd is running. So, the middle chunk of code is mine, everything

I thought that I would post this and see what others think. I wanted a way to authenticate mail users with pass through auth to a win2k box, so I don't have to add accounts on our mail server, just the 2k box. But the problem is a way for them to change their password off-site. So I've been trying to get poppassd (1.8.4 - current) to work with the pam_winbind.so module with very limited

hello centos network I installed poppassd (the deposit razor edge) to change easily passwords of users of my system I allow connections on port 106 that locally I have configured pam I did install the plugin roundcubemail password in webmail everything seems to work well my question is simple on my system for some users, I built chrooted well I manage to change the password of users with the

Hi, I saw your post about poppassd and winbind and wondered if you got anywhere or found a solution. Thanks, Keith -- ---------------------------- Keith Conger Server Systems Administrator Information Technology Onondaga Community College phone:(315)498-2767 nextel:(315)575-7197 email:congerk@sunyocc.edu jabber: congerk@im.sunyocc.edu http://www.sunyocc.edu/~congerk/

hi when i migrated from courier to dovecot my password change plugin in squirrelmail stopped working since courierpassd was being used in poppassd is there a way to get this working ie some alternative solution i don't want to use qmailadmin thanks rajesh

I know this is probably really easy thing but... I've loaded data into R from the net. I've got 97 subjects (in a database). I'm supposed to remove subjects "lower than 140 cm".. Of course it's easy to find the subject (i.e. number 83 and 84) - but how can I delete these subjects from the database in R? (delete the entire row..)? I've spent 2 hours searching the net

Dear All, this i feel is a little out of topic but really apprecite if someone can help i am tryin to authenicate my Centos 5.2 box to windows 2003 ADS server .. but am not able to do so . i get the following error when i run kinit kinit(v5): Improper format of Kerberos configuration file while initializing Kerberos 5 library i have the following packages installed on my linux box [root at

Hello, I am using dovecot (2.0.9) and using virtual users using passdb { args = /etc/dovecot/dovecotpasswd driver = passwd-file } How can i make my virtual users change their passwords using web interface ? My users already uses squirrelmail to access their mail. is there a program to add to squirrelmail to add this function to the clients ? or should i user different separate website

Warren Young wrote: > The new rules are: > > 1. At least 8 characters. > > 2. Nothing that violates the pwquality rules: > > http://linux.die.net/man/8/pam_pwquality The 7 rules listed in this URL seem utterly bizarre to me. The first is "Don't use a palindrome" which makes me wonder if the author knows the meaning of this word. I suspect he/she thinks

On 2015-02-03, Scott Robbins <scottro at nyc.rr.com> wrote: > On Tue, Feb 03, 2015 at 01:53:45PM +0000, Timothy Murphy wrote: >> >> The first is "Don't use a palindrome" >> which makes me wonder if the author knows the meaning of this word. >> I suspect he/she thinks it means "a known word backwards". > > That's what I would call

Hmmm...., i have made now a complete new install but the problem persists: ldap authentication works, but the host attribute is ignored. I have installed CentOS7 64bit with KDE. I did not do any 'yum update' or install of extra packages so far. these pam and ldap packages are installed: openldap-devel-2.4.39-6.el7.x86_64 openssh-ldap-6.6.1p1-11.el7.x86_64 openldap-2.4.39-6.el7.x86_64

I am still not understanding why your using MD5? Is it because everyone in InfoSec declared that everyone finally went from md5 to sha512 or what? -----Original Message----- From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On Behalf Of Ulrich Hiller Sent: Monday, May 11, 2015 1:40 PM To: CentOS mailing list Subject: Re: [CentOS] ldap host attribute is ignored one more

Hi All, I prepared a Centos 6.8 Minimal server, as part of hardening i added PAM rules under system-auth and password-auth to lock the user account for 30 minutes after 3 failed login attempts. ############system-auth############### auth required pam_tally2.so deny=3 unlock_time=1800 auth required pam_env.so auth sufficient pam_unix.so auth requisite

Hi, I want that users can log on (SSH and console) a Debian box can do it through Active Directory. I still want that root user can log on (SSH and console) so I created a wheel group for that. I can log on successfully with all AD and root users. However, I'd like to limit the AD users to the technology domain group. I've googled a lot:

Scott Robbins wrote: > On Tue, Feb 03, 2015 at 01:53:45PM +0000, Timothy Murphy wrote: >> >> The 7 rules listed in this URL seem utterly bizarre to me. >> >> The first is "Don't use a palindrome" >> which makes me wonder if the author knows the meaning of this word. >> I suspect he/she thinks it means "a known word backwards". >

one more thing: firewalld service and selinux are deactivated. On 05/11/2015 07:06 PM, Ulrich Hiller wrote: > Hmmm...., i have made now a complete new install but the problem > persists: ldap authentication works, but the host attribute is ignored. > > I have installed CentOS7 64bit with KDE. > I did not do any 'yum update' or install of extra packages so far. > >

On May 8, 2015, at 11:14 AM, Ulrich Hiller <hiller at mpia-hd.mpg.de> wrote: > > /etc/pam.d/system-auth: > ----------------------- > #%PAM-1.0 > # This file is auto-generated. > # User changes will be destroyed the next time authconfig is run. > auth required pam_env.so > auth sufficient pam_unix.so nullok try_first_pass > auth

Hi all, I am a bit confused about the usage of pam_mount. Here is my /etc/pam.d/system-auth: auth required pam_env.so auth required pam_mount.so auth sufficient pam_unix.so nullok try_first_pass auth requisite pam_succeed_if.so uid >= 500 quiet auth sufficient pam_krb5.so use_first_pass auth required pam_deny.so account

Ok, do the following. Remove all you modifications from pam so its back to original. apt-get install krb5-ssh restart ssh, try again. Still not working? Now try correct pam. Type : pam-auth-update Select kerberos winbind and unix ( and keep other defaults as is ) Type id username You see a correct shell and correct and existing homedir? Not, you missed the setting in windows, or set

passwd: Authentication token manipulation error smbpasswd: machine 127.0.0.1 rejected the password change: Error was : Wrong Password best regards [FACILITY/btombul at samba ~]$ passwd Changing password for user FACILITY/btombul. Changing password for FACILITY/btombul (current) NT password: New password: Retype new password: passwd: Authentication token manipulation error [FACILITY/btombul at