PAM and squid
Heiko Hund
heiko at ist.eigentlich.net
Thu Mar 11 16:44:14 UTC 2004
Jim Gifford wrote:
> Here is my error message
> Mar 10 11:57:23 server squid(pam_unix)[23002]: authentication failure;
> logname= uid=117 euid=117 tty= ruser= rhost= user=jim
> Now for the strange part, the uid is for the squid proxy server and not the
> user jim
Did you set the 'pam_auth' authenticators owner-suid bit and is it owned
by root? If you use shadow passwords (very likely you do), you have to
have the permission to read /etc/shadow. In many cases only root and
maybe a group 'shadow' or likewise is allowed to do that. Squid has to
become one of them to validate the password you supply for user 'jim'.
HTH
Heiko
More information about the Pam-list
mailing list