Lei Shi` | 2 Dec 03:06 2005
Picon

SRP Password not set

Hi,I ran into a problem when I use SRP telnetd and telnet:
Trying 127.0.0.1...
Connected to GATE (127.0.0.1).
Escape character is '^]'.
[ Negotiating SSL/TLS session ... ]
[ Cipher: ADH-AES256-SHA (256 bits) ]
[ Attempting to verify TLS session parameters... ]
[ Trying SRP ... ]
SRP Username (root): root
[ SRP refuses authentication for 'root' (Password not set) ]
WARNING: unable to verify TLS session parameters. Continue? (Y/N) y
telnetd: Authorization failed.
Connection closed by foreign host.
My configuration:
1. OS
centos 4.2
2. installation steps
1) ./configure --prefix=/usr/local/srp --with-openssl=/root/kernel/openssl-0.9.8a --with-pam
2) make
3) make install
4) cp /usr/local/srp/sbin/eps_chkpwd /sbin/
5) cp /usr/local/srp/bin/passwd /usr/bin/
6) cp /usr/local/srp/bin/login /bin/
7) cp /usr/local/srp/bin/su /bin/
8) cp base/pam_eps/pam_eps_*.so /lib/security/
9) added the fllowing two lines to some files in /etc/pam/d: login, su, passwd, telnet(made by myself) and system-auth
auth required /lib/security/pam_eps_auth.so
passwd required /lib/security/pam_eps_passwd.so
/etc/pam.d/telete
auth required pam_stack.so service=system-auth
auth required /lib/security/pam_eps_auth.so
account required pam_stack.so service=system-auth
passwd required /lib/security/pam_unix.so nullok use_authtok md5 shadow
passwd required /lib/security/pam_eps_passwd.so
session required pam_stack.so service=system-auth
10) run the tconf a! nd generated the key
11) remade the root password and one other and confirmed that they updated shadow, passwd and tpasswd
12) made a new file --- /etc/xinetd.d/telnet
# description: The SRP Telnet server
#serves Telnet connections.
# It uses SRP for authentication.
service telnet
{
disable = no
bind = 127.0.0.1
socket_type = stream
wait = no
user = root
server = /usr/local/srp/sbin/telnetd
server_args = -a valid
log_on_success += DURATION USERID
log_on_failure += USERID
nice = 10
}
What's wrong is this? All contributions gratefully received.

雅虎免费G邮箱-中国第一绝无垃圾邮件骚扰超大邮箱
雅虎助手¨D搜索、杀毒、防骚扰
_______________________________________________
Pam-list mailing list
Pam-list <at> redhat.com
https://www.redhat.com/mailman/listinfo/pam-list
Michael Chang | 2 Dec 21:56 2005

Re: SRP Password not set


What does /etc/pam.d/system-auth contain? If it contains pam_securetty.so 
in the auth section then make sure that /etc/securetty contains entries 
for pseudoterminals (pts*).
(I personally wouldn't do that because it opens up holes for direct root
access.)
I'm not sure that that's your problem, but the warning message "SRP refuses
authentication for 'root'" appears to be an indication that, as per your
current configuration, root logins are denied.  For login(1)-based applications,
/etc/securetty is consulted to determine which ttys can be used for root
logins.
If this doesn't apply to your setup, kindly devnullify this message.

HTH,
Michael

On Fri, 2 Dec 2005, Lei Shi` wrote:

|                 Hi,I ran into a problem when I use SRP telnetd and 
| telnet:  Trying 127.0.0.1...  Connected to GATE (127.0.0.1).  Escape 
| character is '^]'.  [ Negotiating SSL/TLS session ... ] [ Cipher: 
| ADH-AES256-SHA (256 bits) ] [ Attempting to verify TLS session 
| parameters... ] [ Trying SRP ... ] SRP Username (root): root [ SRP 
| refuses authentication for 'root' (Password not set) ] WARNING: unable 
| to verify TLS session parameters. Continue? (Y/N) y telnetd: 
| Authorization failed.  Connection closed by foreign host.  My 
| configuration:  1. OS centos 4.2 2. installation steps 1) ./configure 
| --prefix=/usr/local/srp --with-openssl=/root/kernel/openssl-0.9.8a 
| --with-pam 2) make 3) make install 4) cp /usr/local/srp/sbin/eps_chkpwd 
| /sbin/ 5) cp /usr/local/srp/bin/passwd /usr/bin/ 6) cp 
| /usr/local/srp/bin/login /bin/ 7) cp /usr/local/srp/bin/su /bin/ 8) cp 
| base/pam_eps/pam_eps_*.so /lib/security/ 9) added the fllowing two lines 
| to some ! files in
|  /etc/pam/d: login, su, passwd, telnet(made by myself) and system-auth 
| auth required /lib/security/pam_eps_auth.so passwd required 
| /lib/security/pam_eps_passwd.so /etc/pam.d/telete auth required 
| pam_stack.so service=system-auth auth required 
| /lib/security/pam_eps_auth.so account required pam_stack.so 
| service=system-auth passwd required /lib/security/pam_unix.so nullok 
| use_authtok md5 shadow passwd required /lib/security/pam_eps_passwd.so 
| session required pam_stack.so service=system-auth 10) run the tconf and 
| generated the key 11) remade the root password and one other and 
| confirmed that they updated shadow, passwd and tpasswd 12) made a new 
| file --- /etc/xinetd.d/telnet # description: The SRP Telnet server 
| #serves Telnet connections.  # It uses SRP for authentication.  service 
| telnet { disable = no bind = 127.0.0.1 socket_type = stream wait = no 
| user = root server = /usr/local/srp/sbin/telnetd server_args = -a valid 
| log_o! n_success
|  += DURATION USERID log_on_failure += USERID nice = 10 } What's wrong is 
| this? All contributions gratefully received.

--

-- 
/* BEGIN SIG
 *
 * "Most of us, when all is said and done, like what
 *  we like and make up reasons for it afterwards."
 *  -- Soren F. Petersen
 *
 *-----------------------------
 * Michael Chang
 * miranda [at] syndetic [dot] org
 * AIM: Solempathe
 * http://www.syndetic.org/
 */
Lei Shi` | 3 Dec 13:34 2005
Picon

SRP problem is not resovled

Thanks for Michael Chang !
But the problem is not resovled. :(

There are 3 problems: telnet, passwd and ssh
1. telnet problem
/usr/local/srp/bin/telnet 127.0.0.1
Trying 127.0.0.1...
Connected to GATE (127.0.0.1).
Escape character is '^]'.
[ Negotiating SSL/TLS session ... ]
[ Cipher: ADH-AES256-SHA (256 bits) ]
[ Attempting to verify TLS session parameters... ]
[ Trying SRP ... ]
SRP Username (root): slls
[ SRP refuses authentication for 'slls' (Password not set) ]
WARNING: unable to verify TLS session parameters.  Continue? (Y/N)
Connection closed.
[root <at> GATE pam.d]# /usr/local/srp/bin/telnet 127.0.0.1
Trying 127.0.0.1...
Connected to GATE (127.0.0.1).
Escape character is '^]'.
[ Negotiating SSL/TLS session ... ]
[ Cipher: ADH-AES256-SHA (256 bits) ]
[ Attempting to verify TLS session parameters... ]
[ Trying SRP ... ]
SRP Username (root): slls
[ SRP refus! es authentication for 'slls' (Password not set) ]
WARNING: unable to verify TLS session parameters.  Continue? (Y/N) y
telnetd: Authorization failed.
Connection closed by foreign host.
2. passwd problem
passwd root
Changing password for user root.
passwd: Authentication token manipulation error
passwd slls
Changing password for user slls.
passwd: Authentication token manipulation error
/usr/local/srp/bin/passwd root
passwd: Authentication token manipulation error
/usr/local/srp/bin/passwd slls
passwd: Authentication token manipulation error
If I replace "password required /lib/security/pam_eps_passwd.so" with "password sufficient /lib/security/pam_eps_passwd.so" in /etc/pam.d/system-auth, the command passwd is OK!
/usr/local/srp/bin/passwd root
New UNIX password:
Retype new UNIX password:
Password changed
Password changed
/usr/local/srp/bin/passwd slls
New UNIX password:Retype new UNIX password:
Password changed
Password changed
3.ssh problem
If I replace "auth sufficient /lib/security/pam_eps_auth.so" with "auth required /lib/security/pam_eps_auth.so" in /etc/pam.d/system-auth, I can't login from putty on windows.
login as: slls
slls <at> GATE's password:
Access denied

the fllowing is the details of 12 config files:  (the addition is between two "############" lines )
1.  vi /etc/pam.d/system-auth
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      /lib/security/$ISA/pam_env.so
auth        required    /lib/security/$ISA/pam_unix.so likeauth nullok
#######################
auth        sufficient  &nbs! p; /lib/security/pam_eps_auth.so
#auth       required      /lib/security/pam_eps_auth.so
#######################
auth        required      /lib/security/$ISA/pam_deny.so
account     required      /lib/security/$ISA/pam_unix.so
account     sufficient    /lib/security/$ISA/pam_succeed_if.so uid < 100 quiet
account     required      /lib/security/$ISA/pam_permit.so
password    requisite     /lib/security/$ISA/pam_cracklib.so retry=3
password    required      /lib/security/$ISA/pam_unix.so nullok use_authtok md5 shadow
#######################
password    required      /lib/security/pam_eps_passwd.so
#password    sufficient    /lib/security/pam_eps_passwd.so
#######################
password    required      /lib/security/$ISA/pam_deny.so
session     required      /lib/security/$ISA/pam_limits.so
session     required      /lib/security/$ISA/pam_unix.so
2. vi /etc/pam.d/passwd
#%PAM-1.0
auth       required     pam_stack.so service=system-auth
account    required     pam_stack.so service=system-auth
password   required     pam_stack.so service=system-auth
#####################
password  required  /lib/security/pam_eps_passwd.so
#####################
3. vi /etc/pam.d/login
#%PAM-1.0
auth       required     pam_securetty.so
#########################
auth       required     /lib/security/pam_eps_auth.so
#########################
auth       required     pam_stack.so service=system-auth
auth       required     pam_nologin.so
account    required     pam_stack.so service=system-auth
password   required     pam_stack.so service=system-auth
########################
password    required      /lib/security/pam_eps_passwd.so
#######################
# pam_selinux.so close should be the first session rule
session    required     pam_selinux.so close
session    required     pam_stack.so service=system-auth
session    required     pam_loginuid.so
session    optional     pam_console.so
# pam_selinux.so open should be the last session rule
session    required     pam_selinux.so multiple open
4. vi /etc/pam.d/telnet (made by myself)
auth required /lib/security/pam_unix.so
auth       required     pam_stack.so service=system-auth
auth       required     /lib/security/pam_eps_auth.so
account    required     pam_stack.so service=system-auth
passwd       required   /lib/security/pam_unix.so nullok use_authtok md5 shadow
passwd       required   /lib/security/pam_eps_passwd.so
session    required     pam_stack.so service=system-auth
5.  vi /etc/pam.d/sshd
#%PAM-1.0
auth       required     pam_stack.so service=system-auth
################
auth       required     /lib/security/pam_eps_auth.so
################
auth       required     pam_nologin.so
account    required     pam_stack.so service=system-auth
password   required     pam_stack.so service=system-auth
################
password    required      /lib/security/pam_eps_passwd.so
################
session    required     pam_stack.so service=system-auth
session    required     pam_loginuid.so
The following is some informations of passwd . I think that it's enough :)
6. vi /etc/tpasswd.conf
1:BeSXzvfTmxCDCkezFu0nATmpRZ7f2Owzq6go.FN/yxc0d6meIMcECy.noWZIdAlddq9NRPQM2KBsJadV3bovReMy4tsVfMBVQmDiLySA3Simn5qrDra20Tc681FDYVdWobC2bsmJQoq9qp3yd1lJZdr/lN4xdanvctOxyCWJA6N:5
7. vi /etc/tpasswd
root:84/Rzyr1DgpRBfmSVTR494fw112Eo6tMc9Hxb9xPDK.owql.YzmcqUsoMUxXKI8nywwyy9AQa//a9hoktE.vECdR933Myb4OSp0DH9Wou7VW2ZJMt.wru4WW2qyi0Ra5C10pL2PVUuFldXms.bdUW26QO37YTnEWjCFNaZHUl1/:KU3RJ6bzeRwQk:1
slls:9E.6uofYjFf32X6I5Ko.6zS2q2SVwSULRo46DkFcPW28ZYNy9m5KEvfPw6m8kHwivU8GtsJYlDoNenFeu3DOl1MO68OQjb8A9Ks5I4j39zA03a6YYpGTIUUnP3xTUb5h1giMOErY05rXQbTCISVJaBKOlz7iLorvTYYfMZjuaFA:212vUN4k1CRD1n:1
8. vi /etc/passwd
root:x:0:0:root:/root:/bin/bash
slls:x:500:500::/home/slls:/bin/bash
9. vi /etc/shadow
root:$1$hXd4s8QX$F3S0e0jpyCv96xvflCldi0:13118:0:99999:7:::
slls:$1$ch/mXiOt$QaNucFtjt3v2uToCoNMYd/:13118:0:99999:7:::
10.  vi /etc/group
root:x:0:root
slls:x:500:
11.  vi /etc/gshadow
root:!!::root
slls:!::
12. vi /etc/securetty
console
vc/1
vc/2
vc/3
vc/4
vc/5
vc/6
vc/7
vc/8
vc/9
vc/10
vc/11
tty1
tty2
tty3
tty4
tty5
tty6
tty7
tty8
tty9
tty10
tty11
 
 

雅虎免费G邮箱-中国第一绝无垃圾邮件骚扰超大邮箱
雅虎助手¨D搜索、杀毒、防骚扰
_______________________________________________
Pam-list mailing list
Pam-list <at> redhat.com
https://www.redhat.com/mailman/listinfo/pam-list
`VL | 4 Dec 10:13 2005
Picon

Re: pam_limits not effective

As i understand, there are problems with setting limits via pam.
Please, search this list for details - problem and its reasons were
discussed.

2005/11/8, Hannes Krueger <Hannes.Krueger <at> uibk.ac.at>:
> Hi out there,
>
> I tried to set some hard memory limits using /etc/secutity/limits.conf
> I set hard limits for my user for rss, data, stack, memlock 1000
> I also set a maxlogins of 4.
> I added "session required pam_limits.so" to /etc/pam.d/xdm and login.
>
> I was able to verify that the maxlogins limit works.
> all other limits seem to be without effect.
>
> Is there anything else to do?
> Are there any special requirements to the kernel?
>
> I'm using 2.6.5-7.201-default (Suse kernel)
>
> # Class Based Kernel Resource Management
> #
> CONFIG_CKRM=y
> CONFIG_RCFS_FS=m
> CONFIG_CKRM_TYPE_TASKCLASS=y
> CONFIG_CKRM_RES_NUMTASKS=m
> CONFIG_CKRM_CPU_SCHEDULE=y
> # CONFIG_CKRM_CPU_SCHEDULE_AT_BOOT is not set
> CONFIG_CKRM_RES_BLKIO=y
> CONFIG_CKRM_TYPE_SOCKETCLASS=y
> CONFIG_CKRM_RBCE=m
> CONFIG_CKRM_CRBCE=m
> CONFIG_DELAY_ACCT=y
> CONFIG_KALLSYMS=y
> CONFIG_FUTEX=y
> CONFIG_EPOLL=y
> CONFIG_IOSCHED_NOOP=y
> CONFIG_IOSCHED_AS=y
> CONFIG_IOSCHED_DEADLINE=y
> CONFIG_IOSCHED_CFQ=y
> CONFIG_IOSCHED_PS=y
> # CONFIG_CC_OPTIMIZE_FOR_SIZE is not set
>
> _______________________________________________
> Pam-list mailing list
> Pam-list <at> redhat.com
> https://www.redhat.com/mailman/listinfo/pam-list
>
Matt Sellers | 8 Dec 20:37 2005
Picon

How comile pam modules

Im trying to compile a single pam module via this.

g++ -shared pam_permit.c -o pam_permit.so

The problem i keep seing in syslog everytime I run the module.

syslog:

Dec 5 16:32:53 linuxlab2 su: PAM unable to 
dlopen(/lib/security/$ISA/pam_permit.so)
Dec 5 16:32:53 linuxlab2 su: PAM [dlerror: 
/lib/security/../../lib/security/pam_permit.so: undefined symbol: 
_Z12pam_get_userP10pam_handlePPKcS2_]
Dec 5 16:32:53 linuxlab2 su: PAM adding faulty module: 
/lib/security/$ISA/pam_permit.so

Anybody got any ideas, im trying to write my own pam module to do nice 
things, and this is my practice.

:-)
-matt
Jason Gerfen | 8 Dec 20:39 2005
Picon

Re: How comile pam modules

PPKcS2?  Is that some library you are trying to utilize?  If so you will 
need to link against it:

g++ shared pam_permit.c -o pam_permit.so -libppk (or equivelant)

Matt Sellers wrote:

> Im trying to compile a single pam module via this.
>
> g++ -shared pam_permit.c -o pam_permit.so
>
> The problem i keep seing in syslog everytime I run the module.
>
> syslog:
>
> Dec 5 16:32:53 linuxlab2 su: PAM unable to 
> dlopen(/lib/security/$ISA/pam_permit.so)
> Dec 5 16:32:53 linuxlab2 su: PAM [dlerror: 
> /lib/security/../../lib/security/pam_permit.so: undefined symbol: 
> _Z12pam_get_userP10pam_handlePPKcS2_]
> Dec 5 16:32:53 linuxlab2 su: PAM adding faulty module: 
> /lib/security/$ISA/pam_permit.so
>
> Anybody got any ideas, im trying to write my own pam module to do nice 
> things, and this is my practice.
>
> :-)
> -matt
>
> _______________________________________________
> Pam-list mailing list
> Pam-list <at> redhat.com
> https://www.redhat.com/mailman/listinfo/pam-list

--

-- 
Jason Gerfen

"Oh I have seen alot of what
 the world can do, and its
 breaking my heart in two..."
 ~ Wild World, Cat Stevens
Matt Sellers | 8 Dec 20:53 2005
Picon

Re: How comile pam modules

no, this is the standard pam_permit.c that is packaged with the latest 
pam release.  Im trying to compile it so I know the procedure for 
compiling pam modules then I wish to alter it in C++ ( stdlib then using 
ldap libraries later).   Ill admit im very rusty with this type of 
development at the moment, but as soon as I can test my work with 
correct compiling ill be alot more viable. 

Any help suggestions greatly appreciated..

Matt Sellers
matt <at> indigo.nu

Jason Gerfen wrote:
> PPKcS2?  Is that some library you are trying to utilize?  If so you 
> will need to link against it:
>
> g++ shared pam_permit.c -o pam_permit.so -libppk (or equivelant)
>
> Matt Sellers wrote:
>
>> Im trying to compile a single pam module via this.
>>
>> g++ -shared pam_permit.c -o pam_permit.so
>>
>> The problem i keep seing in syslog everytime I run the module.
>>
>> syslog:
>>
>> Dec 5 16:32:53 linuxlab2 su: PAM unable to 
>> dlopen(/lib/security/$ISA/pam_permit.so)
>> Dec 5 16:32:53 linuxlab2 su: PAM [dlerror: 
>> /lib/security/../../lib/security/pam_permit.so: undefined symbol: 
>> _Z12pam_get_userP10pam_handlePPKcS2_]
>> Dec 5 16:32:53 linuxlab2 su: PAM adding faulty module: 
>> /lib/security/$ISA/pam_permit.so
>>
>> Anybody got any ideas, im trying to write my own pam module to do 
>> nice things, and this is my practice.
>>
>> :-)
>> -matt
>>
>> _______________________________________________
>> Pam-list mailing list
>> Pam-list <at> redhat.com
>> https://www.redhat.com/mailman/listinfo/pam-list
>
>
>
Guilherme Mazzela | 8 Dec 21:00 2005
Picon

RE: How comile pam modules

try

g++ -shared -lpam pam_permit.c -o pam_permit.so

Guilherme Mazzela

-----Original Message-----
From:   Matt Sellers [mailto:matt <at> indigo.nu]
Sent:   Thu 12/8/2005 5:37 PM
To:     pam-list <at> redhat.com
Cc:    
Subject:        How comile pam modules
Im trying to compile a single pam module via this.



The problem i keep seing in syslog everytime I run the module.

syslog:

Dec 5 16:32:53 linuxlab2 su: PAM unable to
dlopen(/lib/security/$ISA/pam_permit.so)
Dec 5 16:32:53 linuxlab2 su: PAM [dlerror:
/lib/security/../../lib/security/pam_permit.so: undefined symbol:
_Z12pam_get_userP10pam_handlePPKcS2_]
Dec 5 16:32:53 linuxlab2 su: PAM adding faulty module:
/lib/security/$ISA/pam_permit.so

Anybody got any ideas, im trying to write my own pam module to do nice
things, and this is my practice.

:-)
-matt

_______________________________________________
Pam-list mailing list
Pam-list <at> redhat.com
https://www.redhat.com/mailman/listinfo/pam-list


_______________________________________________
Pam-list mailing list
Pam-list <at> redhat.com
https://www.redhat.com/mailman/listinfo/pam-list
Jason Gerfen | 8 Dec 21:02 2005
Picon

Re: How comile pam modules

thanks, not familiar with g++ tools.

Guilherme Mazzela wrote:

> try
>
> g++ -shared -lpam pam_permit.c -o pam_permit.so
>
> Guilherme Mazzela
>
> -----Original Message-----
> From:   Matt Sellers [mailto:matt <at> indigo.nu]
> Sent:   Thu 12/8/2005 5:37 PM
> To:     pam-list <at> redhat.com
> Cc:    
> Subject:        How comile pam modules
> Im trying to compile a single pam module via this.
>
>
>
> The problem i keep seing in syslog everytime I run the module.
>
> syslog:
>
> Dec 5 16:32:53 linuxlab2 su: PAM unable to
> dlopen(/lib/security/$ISA/pam_permit.so)
> Dec 5 16:32:53 linuxlab2 su: PAM [dlerror:
> /lib/security/../../lib/security/pam_permit.so: undefined symbol:
> _Z12pam_get_userP10pam_handlePPKcS2_]
> Dec 5 16:32:53 linuxlab2 su: PAM adding faulty module:
> /lib/security/$ISA/pam_permit.so
>
> Anybody got any ideas, im trying to write my own pam module to do nice
> things, and this is my practice.
>
> :-)
> -matt
>
> _______________________________________________
> Pam-list mailing list
> Pam-list <at> redhat.com
> https://www.redhat.com/mailman/listinfo/pam-list
>
>
>------------------------------------------------------------------------
>
>_______________________________________________
>Pam-list mailing list
>Pam-list <at> redhat.com
>https://www.redhat.com/mailman/listinfo/pam-list
>

--

-- 
Jason Gerfen

"Oh I have seen alot of what
 the world can do, and its
 breaking my heart in two..."
 ~ Wild World, Cat Stevens
Matt Sellers | 8 Dec 21:20 2005
Picon

Re: How comile pam modules

no luck, still getting same errors....

Dec  8 14:14:06 linuxlab2 su: PAM unable to 
dlopen(/lib/security/$ISA/pam_permit.so)
Dec  8 14:14:06 linuxlab2 su: PAM [dlerror: 
/lib/security/../../lib/security/pam_permit.so: undefined symbol: 
_Z12pam_get_userP10pam_handlePPKcS2_]
Dec  8 14:14:06 linuxlab2 su: PAM adding faulty module: 
/lib/security/$ISA/pam_permit.so
Dec  8 14:14:06 linuxlab2 su: PAM unable to 
dlopen(/lib/security/$ISA/pam_permit.so)
Dec  8 14:14:06 linuxlab2 su: PAM [dlerror: 
/lib/security/../../lib/security/pam_permit.so: undefined symbol: 
_Z12pam_get_userP10pam_handlePPKcS2_]
Dec  8 14:14:06 linuxlab2 su: PAM adding faulty module: 
/lib/security/$ISA/pam_permit.so
Dec  8 14:14:06 linuxlab2 su(pam_unix)[1507]: session opened for user 
root by root(uid=0)

What did I do....

1. extracted latest pam source
2. edited pam_permit.c to removed UNUSED declerations in function 
definitions.
3.  ran ./configure and copied config.h to /modules/pam_permit/ so g++ 
could include it.
4. g++ -shared -lpam pam_permit.c -o pam_permit.so (no compile errors....)
5. copied to /lib/security/pam_permit.so 

6. tested with su (/etc/pam.d/su is configured properly) 

still any ideas?????
thanks again,
-matt

Jason Gerfen wrote:
> thanks, not familiar with g++ tools.
>
> Guilherme Mazzela wrote:
>
>> try
>>
>> g++ -shared -lpam pam_permit.c -o pam_permit.so
>>
>> Guilherme Mazzela
>>
>> -----Original Message-----
>> From:   Matt Sellers [mailto:matt <at> indigo.nu]
>> Sent:   Thu 12/8/2005 5:37 PM
>> To:     pam-list <at> redhat.com
>> Cc:    Subject:        How comile pam modules
>> Im trying to compile a single pam module via this.
>>
>>
>>
>> The problem i keep seing in syslog everytime I run the module.
>>
>> syslog:
>>
>> Dec 5 16:32:53 linuxlab2 su: PAM unable to
>> dlopen(/lib/security/$ISA/pam_permit.so)
>> Dec 5 16:32:53 linuxlab2 su: PAM [dlerror:
>> /lib/security/../../lib/security/pam_permit.so: undefined symbol:
>> _Z12pam_get_userP10pam_handlePPKcS2_]
>> Dec 5 16:32:53 linuxlab2 su: PAM adding faulty module:
>> /lib/security/$ISA/pam_permit.so
>>
>> Anybody got any ideas, im trying to write my own pam module to do nice
>> things, and this is my practice.
>>
>> :-)
>> -matt
>>
>> _______________________________________________
>> Pam-list mailing list
>> Pam-list <at> redhat.com
>> https://www.redhat.com/mailman/listinfo/pam-list
>>
>>
>> ------------------------------------------------------------------------
>>
>> _______________________________________________
>> Pam-list mailing list
>> Pam-list <at> redhat.com
>> https://www.redhat.com/mailman/listinfo/pam-list
>>
>
>

Gmane