Highest Voted 'pam' Questions - Server Fault Stack Exchange

0

votes

1 answer

Let one user become another user without a password?

On (most) Linux systems, we can let a specific user su into anyone they want by placing him in the wheel group and making some settings in /etc/pam.d/su. I want to do something more limited: I want to let a certain user user1 be able to "become" (as…

asked Aug 09 '20 at 14:02

einpoklum

1,652
3
21
31

0

votes

1 answer

Why does Alpine-based sshd shut down when first session ends?

I have a simple Docker container for a purposeful sshd server whose image derives from alpine:latest. It currently uses /usr/sbin/sshd -D -e -ddd as its entrypoint. When I ssh into it for running a certain command remotely, that command executes…

ssh docker pam alpine

asked Aug 04 '20 at 11:19

rookie099

375
3
14

0

votes

1 answer

Errors log in the auth.log but all working fine

Hi I have a Linux server (18.04) that acts as a TimeMachine backup server using the netatalk service. The users are authenticating using the LDAP (/etc/ldap.conf) The client can connect to the AFP mount do the TimeMachine backup and log out just…

ldap pam pam-ldap afp

asked Jul 20 '20 at 11:22

OscarCy

33
4

0

votes

0 answers

How to enable pam and disallow root/password login for ssh?

I want do disable password and root login via ssh. I followed this guide https://www.cyberciti.biz/faq/how-to-disable-ssh-password-login-on-linux/. It suggests making the following changes to /etc/ssh/sshd_config: ChallengeResponseAuthentication…

linux ssh pam

asked Jul 11 '20 at 11:16

Frederik

101
2

0

votes

1 answer

libpam-ldap unable to connect to LDAP server over SSL/TLS

I am trying to configure PAM to work with my LDAP server for authentication. To do this I am trying to use libpam-ldap, I decided to use libpam-ldap instead of libpam-ldapd for two reasons. First, libpam-ldapd doesn't appear to support group based…

ssl ldap pam pam-ldap

asked Jun 04 '20 at 19:38

WindowHero

101
2

0

votes

1 answer

sshd fails to login user

I could not ssh into one of my servers this morning after successfully doing so most recently yesterday. ssh hostname Connection closed by hostname port 22 I rebooted system and it did not fix the issue. I dug out a keyboard and a display and could…

linux ssh systemd pam

asked May 19 '20 at 15:58

codeDr

206
1
2

0

votes

0 answers

Pam_unix sshd authentication failure even though the login works?

I have a server that is configured with winbind and samba to provide active directory authentication. The active directory integration works fine however whenever I authenticate I see the following errors: Errors Authentication: May 11 00:25:29…

linux pam winbind

asked May 13 '20 at 20:56

Jay

101
1

0

votes

2 answers

Determine if Linux account locked when SELinux protects shadow

I am trying to run a script which gets the username of every locked account on a Linux system. The server is a Gentoo Hardened Server with SELinux. I tried by writing some Python which looks in /shadow/passwd for the obligatory '!' instead of a…

ssh pam selinux

asked May 08 '20 at 19:03

John Tate

179
4
19

0

votes

1 answer

How to configure PAM to authenticate SSH logins with (password & OTP) or (public key & OTP)

My goal is to develop an ansible playbook to deploy multifactor ssh logins of the type (public key and OTP) or (password and OTP) on Ubuntu Server 18.04 hosts. I followed the guide here and it largely works. The only issue I had was needing to add…

ssh pam ubuntu-18.04 google-authenticator

asked Apr 03 '20 at 22:39

AMiller

101
1
1
1

0

votes

1 answer

Use ssh agent forward and libpam-ssh to connect to a specific user on server without password

I am trying to achieve to setup. I can connect to my server to user A using RSA key with ssh. But i can't figure out how to forward agent to use with libpam-ssh. The goal is to make passwordless sudo commands. I'm on Debian (Buster) btw. ssh …

linux ssh debian pam

asked Feb 22 '20 at 09:56

Kwaadpepper

103
4

-1

votes

1 answer

Curious what server pam_pwdfile is in var/log/messages

I am getting tons of these messages in my /var/log/messages file Apr 16 06:58:20 server pam_pwdfile[7856]: couldn't open password file /etc/techproxy.shadow Apr 16 06:58:20 server pam_pwdfile[7863]: couldn't open password file…

centos pam

asked Apr 16 '15 at 12:05

Paul Mall

1
1

-1

votes

1 answer

migrate samba users to new server

I've read How to migrate Samba User Accounts to a new linux server? however it doesn't address my situation, or at least not with a solution. I have a RHEL 5 machine, wood, running Samba, Dovecot, PostFix. I would like to move these services to…

ldap samba pam

asked Mar 16 '15 at 20:58

Daniel

295
2
13

-1

votes

1 answer

PAM: which type of pam sets uid/gid?

Which type of pam modules (session, auth, account) sets uid/gid? Thank you.

linux pam

asked Apr 01 '11 at 09:40

Daniel

304
1
4
17

-1

votes

1 answer

pam-mysql is not connecting to the database

I have set up postfix using mysql but am running into a problem when trying to send mail out -- the SMTP server fails on authentication: /var/log/mail.log: localhost postfix/smtpd[16637]: connect from localhost.localdomain[127.0.0.1] localhost…

mysql smtp postfix pam

asked Mar 02 '10 at 21:41

Daniel Vandersluis

491
1
6
17

-2

votes

2 answers

Is using easy passwords on root account safe?

Now that I've got your attention :) This is more of a thought experiment than a real question I've been thinking about using an easy root account password for recovery purposes, having in mind these restrictions for login: SSH Password…

linux security pam

asked Jul 26 '20 at 09:49

Mariusz Suchodolski

1
2

Questions tagged [pam]