pam_mount problem
Martin Obermair
mobermair at albani.de
Mon May 22 09:27:39 UTC 2006
Murray Trainer schrieb:
>On Fri, 2006-05-19 at 13:47 +0200, Martin Obermair wrote:
>
>
>>Murray Trainer wrote:
>>
>>
>>>On Fri, 2006-05-19 at 11:08 +0200, Martin Obermair wrote:
>>>
>>>
>>>
>>>>thank you for your fast answer!
>>>>
>>>>manually mounting is working fine!
>>>>
>>>>debug is /etc/security/mount_pam.conf is on!
>>>>
>>>>i have a debug output in /var/log/auth.log (ubuntu)
>>>>
>>>>here is say: no volumes to mount!
>>>>
>>>>i guess it's not a problem with pam service or smbmount.
>>>>i must be a problem with my mount_pam.conf but i can't see it :-(
>>>>
>>>>here is my log output:
>>>>
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: path to luserconf set to
>>>>/home/mobermair/.pam_mount.conf
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: reading options_allow...
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: back from global readconfig
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: going to readconfig user
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: ignoring volume record
>>>>user... (not for me)
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: back from user readconfig
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: no volumes to mount
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: real and effective user ID
>>>>are 0 and 0.
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: clean system authtok (0)
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: command:
>>>>/usr/sbin/pmvarrun [-u] [mobermair] [-d] [-o] [1]
>>>>May 19 08:59:17 ubuntu1 gdm[5795]: pam_mount: setting uid to 0
>>>>May 19 08:59:17 ubuntu1 gdm[5795]: pam_mount: real user/group IDs are
>>>>0/1000, effective is 0/1000
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: error waiting for child
>>>>May 19 08:59:17 ubuntu1 gdm[5773]: pam_mount: done opening session
>>>>
>>>>i don't want this feature via ssh. only for local logins!
>>>>(/etc/pam.d/gdm)
>>>>
>>>>regards
>>>>
>>>>Murray Trainer wrote:
>>>>
>>>>
>>>>
>>>>>On Fri, 2006-05-19 at 09:46 +0200, Martin Obermair wrote:
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>>hello together,
>>>>>>
>>>>>>i am to stupid to configure pam_mount correctly.
>>>>>>
>>>>>>i configurd /etc/pam.d/gdm to automount a smb share on gnome-login.
>>>>>>
>>>>>>the pam entries seems to be correct (i've got entries in /var/log/auth.log)
>>>>>>
>>>>>>her is my local user config ~/.pam_mount.conf:
>>>>>>
>>>>>>volume user smbfs samba POST /home/martin/POST - - -
>>>>>>
>>>>>>(samba = name of samber server in our network
>>>>>>POST = name of samba share
>>>>>>/home/martn/POST = mount point)
>>>>>>
>>>>>>on login in get an error message:
>>>>>>
>>>>>>no volumes to mount!
>>>>>>
>>>>>>both config files (local and /etc/security/pam_mount.conf) are chmod
>>>>>>777!!!!
>>>>>>
>>>>>>/etc/security/pam_mount.conf:
>>>>>>
>>>>>>debug 1
>>>>>>mkmountpoint 1
>>>>>>fsckloop /dev/loop7
>>>>>>luserconf .pam_mount.conf
>>>>>>options_allow nosuid,nodev,loop,encryption,fsck
>>>>>>
>>>>>>lsof /usr/sbin/lsof %(MNTPT)
>>>>>>fsck /sbin/fsck -p %(FSCKTARGET)
>>>>>>losetup /sbin/losetup -p0 "%(before=\"-e\" CIPHER)" "%(before=\"-k\" KEYBITS)" %(FSCKLOOP) %(VOLUME)
>>>>>>unlosetup /sbin/losetup -d %(FSCKLOOP)
>>>>>>cifsmount /bin/mount -t cifs //%(SERVER)/%(VOLUME) %(MNTPT) -o "username=%(USER)%(before=\",\" OPTIONS)"
>>>>>>
>>>>>>smbmount /usr/bin/smbmount //%(SERVER)/%(VOLUME) %(MNTPT) -o "username=%(USER)%(before=\",\" OPTIONS)"
>>>>>>ncpmount /usr/bin/ncpmount %(SERVER)/%(USER) %(MNTPT) -o "pass-fd=0,volume=%(VOLUME)%(before=\",\" OPTIONS)"
>>>>>>smbumount /usr/bin/smbumount %(MNTPT)
>>>>>>ncpumount /usr/bin/ncpumount %(MNTPT)
>>>>>>
>>>>>>
>>>>>>umount /bin/umount %(MNTPT)
>>>>>>
>>>>>>lclmount /bin/mount -p0 -t %(FSTYPE) %(VOLUME) %(MNTPT) "%(before=\"-o\" OPTIONS)"
>>>>>>cryptmount /bin/mount -t crypt "%(before=\"-o\" OPTIONS)" %(VOLUME) %(MNTPT)
>>>>>>nfsmount /bin/mount %(SERVER):%(VOLUME) %(MNTPT) "%(before=\"-o\" OPTIONS)"
>>>>>>mntagain /bin/mount --bind %(PREVMNTPT) %(MNTPT)
>>>>>>
>>>>>>mntcheck /bin/mount # For BSD's (don't have /etc/mtab)
>>>>>>pmvarrun /usr/sbin/pmvarrun -u %(USER) -d -o %(OPERATION)
>>>>>>
>>>>>>i've tried all kinds of configuration but i never mounted a file system
>>>>>>(i think i am to stupid!)
>>>>>>
>>>>>>thanks
>>>>>>
>>>>>>greetinx from bavaria!
>>>>>>
>>>>>>martin
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>Hi Martin,
>>>>>
>>>>>Try mounting the share manually first - eg.
>>>>>
>>>>>smbclient -U userid //server/sharename
>>>>>
>>>>>Have you added the required pam_mount lines to the appropriate service
>>>>>file in /etc/pam.d. Use the login service and test it using a console
>>>>>command line login with debug turned on in pam_mount.conf to see what is
>>>>>happening. There is an unresolved bug with using pam_mount with ssh so
>>>>>it probably wont work logging in via ssh.
>>>>>
>>>>>Regards
>>>>>
>>>>>Murray
>>>>>
>>>>>
>>>>>
>>>Do you have something like the following at the end of the
>>>pam_mount.conf to actually do the mounting?
>>>
>>># An example using spaces:
>>># volume * smb krueger 'Home\ Directories' /home/& - - -
>>>volume * cifs ldap & /home/& username=& - -
>>>
>>>
>>>_______________________________________________
>>>Pam-list mailing list
>>>Pam-list at redhat.com
>>>https://www.redhat.com/mailman/listinfo/pam-list
>>>
>>>
>>>
>>hi
>>
>>i will a user specific mounting so the 'mounting rule' are in
>>$HOME/.pam_mount.conf
>>
>>i tried also the mounting in /etc/security/pam_mounting.conf and
>>disabled the local user file (luserconf .pam_mount.conf) and put 'volume
>>user smbfs samba POST /home/martin/POST - - -' into
>>/etc/security/pam_mounting.conf
>>
>>i have no idea why it isn't working!
>>
>>thanks a lot!
>>
>>regards
>>
>>martin
>>
>>
>
>The file in /etc/security should be pam_mount.conf not
>pam_mounting.conf. You should see some logging on the command line or
>in /var/log/messages when the user logs in to tell you what is
>happening. If not check you have both the required entries in the file
>for the service you are logging in with in /etc/pam.d.
>
>Murray
>
>
>_______________________________________________
>Pam-list mailing list
>Pam-list at redhat.com
>https://www.redhat.com/mailman/listinfo/pam-list
>
>
hi
thank you for answer!
the file is pam_mount.conf not pam_mountig.conf
i only want to use pammount with gdm!
i changed to a global config and tried a local mount only
the output in /var/log/auth.log is the same
May 22 10:55:27 localhost gdm[8747]: (pam_unix) session opened for user
mobermair by (uid=0)
May 22 10:55:27 localhost gdm[8747]: pam_mount: reading options_allow...
May 22 10:55:27 localhost gdm[8747]: pam_mount: ignoring volume record
(not for me)
May 22 10:55:27 localhost gdm[8747]: pam_mount: ignoring volume record
(not for me)
May 22 10:55:27 localhost gdm[8747]: pam_mount: back from global readconfig
May 22 10:55:27 localhost gdm[8747]: pam_mount: per-user configurations
not allowed by pam_mount.conf
May 22 10:55:27 localhost gdm[8747]: pam_mount: no volumes to mount
May 22 10:55:27 localhost gdm[8747]: pam_mount: real and effective user
ID are 0 and 0.
May 22 10:55:27 localhost gdm[8747]: pam_mount: clean system authtok (0)
May 22 10:55:27 localhost gdm[8747]: pam_mount: command:
/usr/sbin/pmvarrun [-u] [mobermair] [-d] [-o] [1]
May 22 10:55:27 localhost gdm[8774]: pam_mount: setting uid to 0
May 22 10:55:27 localhost gdm[8774]: pam_mount: real and effective user
ID are 0 and 0.
May 22 10:55:27 localhost gdm[8774]: pam_mount: real and effective group
ID are 1000 and 1000.
May 22 10:55:27 localhost gdm[8747]: pam_mount: pmvarrun says login
count is 1
May 22 10:55:27 localhost gdm[8747]: pam_mount: done opening session
/etc/security/pam_mount.conf
*
volume user local - /tmp /home/test - - -
*
on the weekend i changed from ubunte 6.04 dapper beta to 5.10 breezyx
badger with the same errors
so the problem is defenitve the person in front of the computer ;-)
thanks a lot
martin
More information about the Pam-list
mailing list