"sshd(pam_unix) []: authentication failure;" and then: "session opened for"

From: Cowboy (cowboy_at_glaeken.one.pl)
Date: 06/24/03

  • Next message: Brian Hatch: "Re: trying to use keys...been asked a bunch, didn't find many solutio ns"
    Date: Tue, 24 Jun 2003 17:30:52 +0200
    To: secureshell@securityfocus.com
    
    

    openssh-3.6.1p2 --with-pam

      If someone has an annoying messages like:

    Jun 24 03:21:29 pi69 sshd(pam_unix)[3118]: authentication failure;
    logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=xxxxxx user=root

    and then:

    Jun 24 03:21:31 pi69 sshd(pam_unix)[3118]: session opened for user root by (uid=0)

    and had not done a mistake, he should change:

    auth-passwd.c(lines 128 or 129 sth. like that):
        return auth_pam_password(authctxt, password) && ok;

    (there is only one such line)

        TO:
        
    auth-passwd.c:
        if (*password != '\0') {
        return auth_pam_password(authctxt, password) && ok; }
         if (*password == '\0') { ok = 0; return 0; }

    or something similar.

    is you don't use empty passwords, it will work as it should. else you
    will get wrong messages (not wrong when looking at this from PAM) but
    wrong in the global meaning.

    if you still have slowdowns when waiting for password input with "auth required /lib/security/pam_stack.so
    service=system-auth" (in /etc/pam.d/sshd)

    try using "auth required /lib/security/pam_unix.so shadow nodelay"

    I hope, this will be useful for anybody...

    -- 
    Best regards,
     Cowboy                          mailto:cowboy@glaeken.one.pl
    

  • Next message: Brian Hatch: "Re: trying to use keys...been asked a bunch, didn't find many solutio ns"