FC6(working 'su -') vs Centos5(failing 'su -')
Tony Nelson
tonynelson at georgeanelson.com
Sat Jun 2 22:23:44 UTC 2007
At 1:39 PM -0500 6/2/07, Justin W wrote:
>Tony Nelson wrote:
>> At 11:13 AM -0500 6/2/07, Justin W wrote:
>>
>>> ...
>>>
>>> May 31 15:04:24 zeus su: pam_unix(su-l:auth): authentication
>>> failure; logname=justin uid=1000 euid=0 tty=pts/0 ruser=justin
>>> rhost= user=root
>>>
>>> type=USER_AUTH msg=audit(1180641866.633:212): user pid=2570 uid=1000
>>> auid=1000 subj=user_u:system_r:unconfined_t:s0 msg='PAM:
>>> authentication acct=root : exe="/bin/su" (hostname=?, addr=?,
>>> terminal=pts/0 res=failed)'
>>>
>> ...
>>
>> Try booting that VM appending "enforcing=0" to the kernel command line. If
>> that helps, then it really is an SELinux issue.
>>
>> FWIW, I'm "su -"ing to root on CentOS 5 with SELinux disabled. I may get
>> around to enabling it someday, but not right now.
>>
>I tried both 'setenforce 0' and appending 'enforcing=0' to the kernel
>arguments. Neither allowed me access.
So much for that idea.
>Would having the user accounts being held in an LDAP directory have any
>effect (though I don't see how it'd effect one access method and not the
>other)?
Dunno, haven't used LDAP. Can you change that for even one new account,
and try it that way?
--
____________________________________________________________________
TonyN.:' <mailto:tonynelson at georgeanelson.com>
' <http://www.georgeanelson.com/>
More information about the fedora-list
mailing list