PAM_MOUNT and SSH

John Newbigin jnewbigin at ict.swin.edu.au
Wed Mar 16 05:50:34 UTC 2005


http://uranus.it.swin.edu.au/~jn/linux/smbfs/index.html

Don't worry about the smbfs bits, the automount and pam module might be
interesting.

John.

Murray Trainer wrote:

> Hi All,
> 
> Are there any workarounds for the problem below.  
> 
> Thanks
> 
> Murray
> 
> 
> 
>>Using pam_mount version 0.9.21 and OpenSSH 3.9p1 on SUSE LINUX 9.2 
>>
>>
>>Privilige Separation is disabled 
>>
>>
>>I have pam_mount mounting home folders from a remote Windows server
>>happily 
>>on the Linux box, with local logins ( ie using pam.d/login ) 
>>
>>
>>Users can logon happily to using ssh ( ie using pam.d/ssh ) but 
>>
>>
>>pam_mount gives errors when trying to mount the remote directory for 
>>an ssh session 
>>
>>
>>"Jan 21 15:38:07 SUSE92 PAM-warn[30346]: function=[pam_sm_acct_mgmt] 
>>service=[sshd] terminal=[ssh] user=[dawsona] ruser=[<unknown>] 
>>rhost=[localhost] 
>>Jan 21 15:38:07 SUSE92 sshd[30345]: Accepted keyboard-interactive/pam
>>for 
>>dawsona from ::ffff:127.0.0.1 port 1443 ssh2 
>>Jan 21 15:38:07 SUSE92 sshd[30347]: pam_mount: error trying to
>>retrieve 
>>authtok from auth code 
>>Jan 21 15:38:07 SUSE92 sshd[30347]: pam_mount: error trying to read
>>password 
>>Jan 21 15:38:07 SUSE92 sshd[30347]: fatal: PAM: pam_open_session(): 
>>Permission denied" 
>>
>>
>>Has anybody got a working pam sshd config with pam_mount I can crib or
>>a 
>>workaround ? thanks 
>>
>>
>>Alan Dawson 
>>-- 
>>"If you make decisions about software -- or anything -- based solely
>>on 
>>short-term cost and benefit, someone with a longer view can easily
>>manoeuver 
>>you into a trap from which it is hard to escape." 
>>
>>
>>_______________________________________________ 
>>Pam-list mailing list 
>>Pam-listredhat.com 
>>https://www.redhat.com/mailman/listinfo/pam-list
>>
> 
> 
> _______________________________________________
> Pam-list mailing list
> Pam-list at redhat.com
> https://www.redhat.com/mailman/listinfo/pam-list
> 
> 
> 


-- 
John Newbigin
Computer Systems Officer
Faculty of Information and Communication Technologies
Swinburne University of Technology
Melbourne, Australia
http://www.ict.swin.edu.au/staff/jnewbigin





More information about the Pam-list mailing list