"sshd(pam_unix) []: authentication failure;" and then: "session opened for"
From: Cowboy (cowboy_at_glaeken.one.pl)
Date: 06/24/03
- Previous message: Gabriel Mino: "RE: trying to use keys...been asked a bunch, didn't find many solutio ns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 24 Jun 2003 17:30:52 +0200 To: secureshell@securityfocus.com
openssh-3.6.1p2 --with-pam
If someone has an annoying messages like:
Jun 24 03:21:29 pi69 sshd(pam_unix)[3118]: authentication failure;
logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=xxxxxx user=root
and then:
Jun 24 03:21:31 pi69 sshd(pam_unix)[3118]: session opened for user root by (uid=0)
and had not done a mistake, he should change:
auth-passwd.c(lines 128 or 129 sth. like that):
return auth_pam_password(authctxt, password) && ok;
(there is only one such line)
TO:
auth-passwd.c:
if (*password != '\0') {
return auth_pam_password(authctxt, password) && ok; }
if (*password == '\0') { ok = 0; return 0; }
or something similar.
is you don't use empty passwords, it will work as it should. else you
will get wrong messages (not wrong when looking at this from PAM) but
wrong in the global meaning.
if you still have slowdowns when waiting for password input with "auth required /lib/security/pam_stack.so
service=system-auth" (in /etc/pam.d/sshd)
try using "auth required /lib/security/pam_unix.so shadow nodelay"
I hope, this will be useful for anybody...
-- Best regards, Cowboy mailto:cowboy@glaeken.one.pl
- Previous message: Gabriel Mino: "RE: trying to use keys...been asked a bunch, didn't find many solutio ns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
