SUMMARY: NIS User account? or crypt issue?

Dege, Robert C. robert.dege at ngc.com
Tue Aug 24 17:26:37 UTC 2004 

To answer James's question, the NIS master is on a linux system.

I have solved my problem.  Thank you to all those that replied.

My problem was not NIS related at all.  It had to do with local authentication.  While performing some tests,
I discovered that only 8< character passwords were successfully authenticating.  Any passwords >8 characters 
were always failing.  I also found that if I only typed the first 8 characters of a 12 character password, then
that user would then successfully login.  This became a DES/MD5 issue.

I search the RedHat errata's & found updated version of the pam program.  I also saw that the version of pam
between the two systems were different.  Upgrading system-2 to a newer version of pam (rpm found in the 7.2
updates folder on the redhat ftp site) fixed my problem.  Now, any user that logs in with a >8 passwords will
correctly authenticate.

-Rob

> -----Original Message-----
> From: redhat-list-bounces at redhat.com
> [mailto:redhat-list-bounces at redhat.com]
> Sent: Tuesday, August 24, 2004 12:29 PM
> To: General Red Hat Linux discussion list
> Subject: RE: NIS User account? or crypt issue?
> 
> 
> 
> A wild guess....
> 
> Im pushing the boat out a bit here, so dont flame me....
> 
> Is the nis master a redhat system?
> 
> Ive seen a problem where the nis master is Solaris and when 
> the password is
> changed on the Redhat system (workstation) the password is 
> screwed up. Maybe
> its got something to do with MD5 (on the redhat system) vs a 
> passwd encrypted
> password on the Solaris system. 
> 
> A passwd password is 8 characters long and an MD5 password is longer.
> 
> Change the password on the nis master or slave.
> 
> James
> 
> --- "Dege, Robert C." <robert.dege at ngc.com> wrote:
> 
> > 
> > I have made some progress on my problem, however I don't 
> feel any closer to
> > a solution than before!
> > I have been able to eliminate NIS as a possible problem.  
> This seems to be
> > more of a authentication issue with login itself.  Here's 
> what I did:
> > 
> > *) first, I took the NIS entry (ypmatch user passwd) && 
> placed it into
> > /etc/passwd.
> > *) shut off NIS.  finger the username to verify that the 
> local passwd entry
> > is valid.
> > *) I tried to login but was still getting password failures.
> > 
> > *) I then ran a crypt perl script & changed the encrypted 
> passwd (passwd is
> > timecard)
> > *) I tried to login & was successful!  I could login.
> > 
> > *) I ran the crypt perl script again & changed the 
> encrypted passwd (passwd
> > is motivation)
> > *) I tried to login & failed with a password incorrect again.
> > 
> > 
> > # ./crypt.pl timecard
> > qiI5rFufWzRBQ
> > 
> > # ./crypt.pl motivation
> > ddo7t1js5n.pE
> > 
> > 
> > -Rob
> > 
> > > -----Original Message-----
> > > From: redhat-list-bounces at redhat.com
> > > [mailto:redhat-list-bounces at redhat.com]
> > > Sent: Tuesday, August 24, 2004 9:38 AM
> > > To: General Red Hat Linux discussion list
> > > Subject: RE: NIS User account
> > > 
> > > 
> > > can you "su - problematic_account" from root?
> > > 
> > > > -----Original Message-----
> > > > From: Dege, Robert C. [mailto:robert.dege at ngc.com]
> > > > Sent: Mon, August 23, 2004 9:36 PM
> > > > To: RedHat List (E-mail)
> > > > Subject: NIS User account
> > > > 
> > > > 
> > > > 
> > > > I am need of assistance.  I have an NIS user account that can 
> > > > logon to one
> > > > machine, but is unable to logon to another.  Both NIS clients 
> > > > share the   
> > > > same NIS master, and are in the same domain.
> > > > 
> > > > I ran a ypmatch against the user, and NIS entry is identical 
> > > > from both    
> > > > machines.  A finger on the NIS account from both systems 
> > > > shows identical 
> > > > information, along with a valid shell.
> > > > 
> > > > Upon failed authentication, /var/log/messages shows a 
> > > > PASSWORD INCORRECT
> > > > message on system-2.  I also tried over ssh & telnet, but 
> > > to no avail.
> > > > 
> > > > Both systems are redhat 7.2.
> > > > 
> > > > -Rob
> > > > 
> > > > 
> > > > 
> > > > 
> > > **************************************************************
> > > *********************
> > > Information contained in this email message is intended only 
> > > for use of the individual or entity named above. If the 
> > > reader of this message is not the intended recipient, or the 
> > > employee or agent responsible to deliver it to the intended 
> > > recipient, you are hereby notified that any dissemination, 
> > > distribution or copying of this communication is strictly 
> > > prohibited. If you have received this communication in error, 
> > > please immediately notify the postmaster at nds.com and destroy 
> > > the original message.
> > > **************************************************************
> > > *********************
> > > 
> > > 
> > > -- 
> > > redhat-list mailing list
> > > unsubscribe 
mailto:redhat-list-request at redhat.com?subject=unsubscribe
> > https://www.redhat.com/mailman/listinfo/redhat-list
> > 
> 
> 
> -- 
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
> 



		
__________________________________
Do you Yahoo!?
Yahoo! Mail - Helps protect you from nasty viruses.
http://promotions.yahoo.com/new_mail


-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

More information about the redhat-list mailing list