The infamous "check pass; user unknown"
Tay, Gary
Gary_Tay at platts.com
Fri Apr 29 08:24:13 UTC 2005
So far I have seen these "check pass" msgs when doing console gui login
(gdm/login), I guess some binaries in the background were running as
root prilvileges.
If you have "rootdn" defined in /etc/ldap.conf may be you could provide
a /etc/ldap.secret, pls "chmod 400" this file, and see if it would make
a difference.
I noticed that when I finally got "automount" to work with LDAP maps
(OpenLDAP and/or SUN ONE DS5.2), I stopped seeing these messages, no
sure if it is just pure coincidence?
Gary
-----Original Message-----
From: pam-list-bounces at redhat.com [mailto:pam-list-bounces at redhat.com]
On Behalf Of Oliver Schulze L.
Sent: Thursday, April 28, 2005 11:56 PM
To: pam-list at redhat.com
Subject: The infamous "check pass; user unknown"
Hi,
I don't know if this is the correct list for this, but this is my
problem.
I have Linux (RH9/Fedora/RHEL4) setup with ldap for local accounts, that
is, for replacing the /etc/passwd with ldap.
All is working correctly. I have run 'authconfig' and the program
configured /etc/ldap.conf and /etc/nsswitch.conf
The problem is that in /var/log/messages I get this 2 lines for every
*sucessfull*
login. That is for every kind of login: console, pop3, imap, ssh, etc
Apr 28 11:53:00 server app(pam_unix)[13817]: check pass; user unknown
Apr 28 11:53:00 server app(pam_unix)[13817]: authentication failure;
logname= uid=0 euid=0 tty= ruser= rhost=
The string server is the hostname, the string app is the application
that the user used
for login in, like login, sshd, dovecot, etc
I wonder if there is a solution for this or is some kind of limitation
or a message
that can not be supressed using the convination of pam/ldap/nss_ldap ?
Many thanks
Oliver
--
Oliver Schulze L.
<oliver at samera.com.py>
_______________________________________________
Pam-list mailing list
Pam-list at redhat.com https://www.redhat.com/mailman/listinfo/pam-list
More information about the Pam-list
mailing list