From: Andrew M. <mo...@or...> - 2011-08-22 16:27:32
|
Look at your pam config for netatalk in /etc/pam.d/. You'll probably see a pam stack that is using both pam_unix and pam_ldap. It looks like pam_unix(auth) is failing, probably because the user doesn't exist in the local /etc/passwd file or because it does but the password is wrong. Then pam_unix(session) succeeds. It sounds like the AFPD authentication is still succeeding, so these messages are annoying but not worrisome. I'm not sure exactly how to tweak the pam stack to eliminate them. Andy On Sun, 21 Aug 2011, Christopher Markuck wrote: > > I just checked and it appears that I have uams_dhx2_pam.so compiled in and is setup in the afpd.conf file. > I turned on max debug and go the following at login > Aug 20 10:58:22.590612 afpd[24923] {uams_dhx2_pam.c:321} (I:UAMS): DHX2 login: userAug 20 10:58:22.648164 afpd[24923] {uams_dhx2_pam.c:210} (I:UAMS): PAM DHX2: PAM SuccessAug 20 10:58:22.992243 afpd[24923] {uams_dhx2_pam.c:653} (I:UAMS): DHX2: PAM Auth OK! > but in my auth.log I get > Aug 21 15:22:11 faith afpd[18962]: pam_unix(netatalk:auth): authentication failure; logname= uid=0 euid=0 tty=afpd ruser= rhost=192.168.1.104 user=userAug 21 15:22:11 faith afpd[18962]: pam_unix(netatalk:session): session opened for user cmarkuck by (uid=0 > > From: igo...@gm... > Date: Sat, 20 Aug 2011 18:15:34 -0400 > To: net...@li... > Subject: Re: [Netatalk-devel] pam_unix(netatalk:auth) error > > I'm guessing you don't have dhx2 compiled or enabled...check /usr/lib/netatalk/ to see if you have uams_dhx2_pam.soIf it wasn't compiled, rerun ./configure after you installed libgcrypt11-dev > > > also make sure that the uams is enabled in your /etc/netatalk/afpd.conf .... -uamlist uams_dhx2.so .... > > > On Sat, Aug 20, 2011 at 12:17 PM, Christopher Markuck <tak...@ho...> wrote: > > > > > > > > I recently instal netatalk 2.2.0 and everything seems to be working fine so far, but every time I log in from my Macbook Pro I get the following error in my auth log. From the client perspective everything appears to be working fine > > Aug 20 12:07:06 hostname afpd[3104]: pam_unix(netatalk:auth): authentication failure; logname= uid=0 euid=0 tty=afpd ruser= rhost=192.168.1.104 user=username > > Aug 20 12:07:07 hostname afpd[3104]: pam_unix(netatalk:session): session opened for user username by (uid=0) > > System InformationUbuntu 10.04 (2.6.32-33-server kernel)The user I'm trying to authenticate with is an ldap user > > Config Information./configure –enable-debian –with-cnid-cdb-backend –disable-cups > > Any ideas on what might be causing this? > > > ------------------------------------------------------------------------------ > > Get a FREE DOWNLOAD! and learn more about uberSVN rich system, > > user administration capabilities and model configuration. Take > > the hassle out of deploying and managing Subversion and the > > tools developers use with it. http://p.sf.net/sfu/wandisco-d2d-2 > _______________________________________________ > > Netatalk-devel mailing list > > Net...@li... > > https://lists.sourceforge.net/lists/listinfo/netatalk-devel > > > > > > ------------------------------------------------------------------------------ > Get a FREE DOWNLOAD! and learn more about uberSVN rich system, > user administration capabilities and model configuration. Take > the hassle out of deploying and managing Subversion and the > tools developers use with it. http://p.sf.net/sfu/wandisco-d2d-2 > _______________________________________________ > Netatalk-devel mailing list > Net...@li... > https://lists.sourceforge.net/lists/listinfo/netatalk-devel |