pam_succeed_if -- error messages in the log
Bob Chiodini
chiodr at kscems.ksc.nasa.gov
Thu Jun 10 10:34:13 UTC 2004
On Wed, 2004-06-09 at 23:44, Matthew Miller wrote:
> On Wed, Jun 09, 2004 at 01:14:05PM -0500, olga at urbantimes.net wrote:
> > Well, unfortunagely changing the location of where the messages are sent
> > isn't the solution for me. I really would like to see who is logging in
> > and out. I wish there was a fix for this problem.
>
> Here's one: simply remove
>
> account sufficient /lib/security/$ISA/pam_succeed_if.so uid < 100
>
> from pam.d. If all you have is local accounts, then it's not likely to be
> relevant anyway.
>
> If you have krb5 or ldap, you'll want to add:
>
> account sufficient /lib/security/$ISA/pam_localuser.so
>
> *after* the pam_unix.so but before the krb5.so or ldap line.
Thank you.
BTW, the file is /etc/pam.d/system-auth.
Bob...
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20040610/eaa1406b/attachment-0001.sig>
More information about the fedora-list
mailing list