[redhat-lspp] Problem with "ssh user at localhost"
Daniel J Walsh
dwalsh at redhat.com
Wed Jan 17 20:03:09 UTC 2007
Loulwa Salem wrote:
> Ooops .. I hit "reply" instead of "reply all"
>
> -------- Original Message --------
> Subject: Re: [redhat-lspp] Problem with "ssh user at localhost"
> Date: Wed, 17 Jan 2007 12:37:59 -0600
> From: Loulwa Salem <loulwas at us.ibm.com>
> To: Daniel J Walsh <dwalsh at redhat.com>
> References: <45AD7AA9.4030000 at us.ibm.com>
> <45AE50CE.7090708 at redhat.com> <45AE5BB5.2070400 at us.ibm.com>
> <45AE6772.1040002 at redhat.com>
>
> Daniel J Walsh wrote:
>>>
>>>
>> What does /etc/pam.d/sshd look like?
> I have not made any changes to sshd file. I assume you don't see this
> problem Dan?
>
> #%PAM-1.0
> #
> # pam.d/sshd - pam.d/sshd configuration for LSPP compliance
> # see the Evaluated Configuration Guide for more info
> #
>
>
> auth include system-auth
> auth required pam_tally2.so deny=5 onerr=fail
>
> account required pam_nologin.so
> account include system-auth
> account required pam_tally2.so
>
> password include system-auth
>
> session required pam_selinux.so close
> session include system-auth
> session required pam_loginuid.so require_auditd
> # pam_selinux.so open should only be followed by sessions to be
> # executed in the user context
> session required pam_selinux.so open
> session required pam_namespace.so debug # FIXME, remove debug
>
> - Loulwa
>
>
> --
> redhat-lspp mailing list
> redhat-lspp at redhat.com
> https://www.redhat.com/mailman/listinfo/redhat-lspp
Yes I think the pam_selinux is your problem, as Tomas said.
More information about the redhat-lspp
mailing list