From: Eric Noriega (noriega@gwu.edu)
Date: Thu Feb 05 2004 - 20:21:47 EST
I have been having a problem with one of our boxes recently. The
system was installed, configured, sys-unconfig'ed, and set up to replace
an existing system (hence the last unconfig). The system now does not
allow users to su, nor do the ssh DSA keys to work. Note the DSA key
and user account information was migrated as part of this move. These
may be related events, but I am not sure.
I have check the basic system setup against other running systems.
OS is Solaris 9 w/ MU4 installed.
I have checked the /etc/pam.conf, no problems.
the /etc/ssh/sshd_config, no problems.
/bin/su has correct permissions. (-r-sr-xr-x)
underling mount points are correct permissions (dr-xr-xr-x)
permissions on /etc/passwd, group & shadow are correct.
passwd -a -s gives no errors.
su - just fails, w/ a return code of 1, "Sorry"; system logs: 'su root'
failed for <name> on /dev/pts/<num>
root can su as normal.
I have run a pkgchk on the system, and discrepancies in system files
were corrected.
It strikes me as pam problem. Using truss on su, the syscalls are fine,
tracing the pam library calls shows pam returning 9 (PAM_AUTH_ERR).
I would appreciate any ideas that the list may have.
Thanks,
Eric Noriega
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:27:59 EDT