Menu
▾
▴
Re: [Pam-mysql-general] 0.6.0/0.7.0(pre) not working - tried md5/plain
|
From: Moriyoshi K. <mor...@at...> - 2005-06-23 06:38:56
|
Hi, As I replied to your post in the forum, --with-openssl needs to be specified in configure. To clarify the difference between crypt()ish and non-crypt()ish; crypt()ish MD5 is supported in libc and you can enable it by setting "Y" and "true" to the crypt and use_md5 parameters respectively, which will result in the following form: $1$abcdefgh$Kn5qrjcQzV7oAHBJ23Cu3/ Non-crypt()ish MD5 is probably what most people consider to be MD5. It is supported with the help of OpenSSL (or Cyrus-SASL) and enabled by setting "MD5" to the crypt parameter, which will result in the following form: d8e8fca2dc0f896fd7cb4cb0031ba249 Regards, Moriyoshi On 2005/06/23, at 9:05, Terry wrote: > My goal is to use md5.=A0 Here are some details: > > Linux hostname 2.6.8-1um #1 Tue Jun 21 20:41:51 CDT 2005 i686 i686=20 > i386 GNU/Linux > mysql-4.1.10a-1.RHEL4.1 > mysql-server-4.1.10a-1.RHEL4.1 > pam-0.77-65.1 > > auth=A0=A0=A0=A0=A0=A0 required=A0=A0=A0=A0 pam_nologin.so > auth=A0=A0=A0=A0=A0=A0 sufficient=A0=A0=A0=A0 pam_stack.so = service=3Dsystem-auth > auth=A0=A0=A0=A0=A0=A0 sufficient=A0 pam_mysql.so user=3Duser = passwd=3Dpass db=3Ddb=20 > table=3Dtabke usercolumn=3Dusername passwdcolumn=3Dpassword crypt=3D0=20= > verbose=3D1 > account=A0=A0=A0 sufficient=A0=A0=A0=A0 pam_stack.so = service=3Dsystem-auth > account=A0=A0=A0 sufficient=A0=A0 pam_mysql.so user=3Duser = passwd=3Dpass db=3Ddb=20 > table=3Dtabke usercolumn=3Dusername passwdcolumn=3Dpassword crypt=3D0=20= > verbose=3D1 > session=A0=A0=A0 required=A0=A0=A0=A0 pam_stack.so = service=3Dsystem-auth > > I have tested this with both vsftpd and sshd.=A0 With vsftpd and = 0.6.0,=20 > I get the following weird error with md5: > Jun 22 18:41:22 hostname vsftpd[17656]: pam_mysql - non-crypt()ish=20 > MD5 hash is not supported in this build. > > Here is a secure log snippet: > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - option verbose is=20= > set to "1" > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_close_db() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_sm_authenticate() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_open_db() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_open_db() returning 0. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_check_passwd() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_format_string() called > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_quick_escape() called. > Jun 22 20:01:43 hostname last message repeated 3 times > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - SELECT password=20= > FROM table WHERE username =3D 'jomama' > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_sql_log() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_sql_log() returning 0. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_check_passwd() returning 0. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_sm_authenticate() returning 0. > > > Also, this is what I get from the client end of things: > 220 (vsFTPd 2.0.1) > 530 Please login with USER and PASS. > 530 Please login with USER and PASS. > KERBEROS_V4 rejected as an authentication type > Name (192.168.1.35:jomama): jomama > 331 Please specify the password. > Password: > 500 OOPS: priv_sock_get_result > Login failed. > 421 Service not available, remote server has closed connection > ftp> > > > Any ideas? |
