Menu
▾
▴
pam-mysql-general
|
From: Terry <td...@gm...> - 2005-06-23 00:05:41
|
My goal is to use md5. Here are some details: Linux hostname 2.6.8-1um #1 Tue Jun 21 20:41:51 CDT 2005 i686 i686 i386=20 GNU/Linux mysql-4.1.10a-1.RHEL4.1 mysql-server-4.1.10a-1.RHEL4.1 pam-0.77-65.1 auth required pam_nologin.so auth sufficient pam_stack.so service=3Dsystem-auth auth sufficient pam_mysql.so user=3Duser passwd=3Dpass db=3Ddb table=3Dtabk= e=20 usercolumn=3Dusername passwdcolumn=3Dpassword crypt=3D0 verbose=3D1 account sufficient pam_stack.so service=3Dsystem-auth account sufficient pam_mysql.so user=3Duser passwd=3Dpass db=3Ddb table=3Dt= abke=20 usercolumn=3Dusername passwdcolumn=3Dpassword crypt=3D0 verbose=3D1 session required pam_stack.so service=3Dsystem-auth I have tested this with both vsftpd and sshd. With vsftpd and 0.6.0, I get= =20 the following weird error with md5: Jun 22 18:41:22 hostname vsftpd[17656]: pam_mysql - non-crypt()ish MD5 hash= =20 is not supported in this build. Here is a secure log snippet: Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - option verbose is set t= o=20 "1" Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_mysql_close_db()=20 called. Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_sm_authenticate()= =20 called. Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_mysql_open_db()=20 called. Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_mysql_open_db()=20 returning 0. Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_mysql_check_passwd(= )=20 called. Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 pam_mysql_format_string() called Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_mysql_quick_escape(= )=20 called. Jun 22 20:01:43 hostname last message repeated 3 times Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - SELECT password FROM=20 table WHERE username =3D 'jomama' Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_mysql_sql_log()=20 called. Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_mysql_sql_log()=20 returning 0. Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_mysql_check_passwd(= )=20 returning 0. Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - pam_sm_authenticate()= =20 returning 0. Also, this is what I get from the client end of things: 220 (vsFTPd 2.0.1) 530 Please login with USER and PASS. 530 Please login with USER and PASS. KERBEROS_V4 rejected as an authentication type Name (192.168.1.35:jomama): jomama 331 Please specify the password. Password: 500 OOPS: priv_sock_get_result Login failed. 421 Service not available, remote server has closed connection ftp> Any ideas? |
|
From: Moriyoshi K. <mor...@at...> - 2005-06-23 06:38:56
|
Hi, As I replied to your post in the forum, --with-openssl needs to be specified in configure. To clarify the difference between crypt()ish and non-crypt()ish; crypt()ish MD5 is supported in libc and you can enable it by setting "Y" and "true" to the crypt and use_md5 parameters respectively, which will result in the following form: $1$abcdefgh$Kn5qrjcQzV7oAHBJ23Cu3/ Non-crypt()ish MD5 is probably what most people consider to be MD5. It is supported with the help of OpenSSL (or Cyrus-SASL) and enabled by setting "MD5" to the crypt parameter, which will result in the following form: d8e8fca2dc0f896fd7cb4cb0031ba249 Regards, Moriyoshi On 2005/06/23, at 9:05, Terry wrote: > My goal is to use md5.=A0 Here are some details: > > Linux hostname 2.6.8-1um #1 Tue Jun 21 20:41:51 CDT 2005 i686 i686=20 > i386 GNU/Linux > mysql-4.1.10a-1.RHEL4.1 > mysql-server-4.1.10a-1.RHEL4.1 > pam-0.77-65.1 > > auth=A0=A0=A0=A0=A0=A0 required=A0=A0=A0=A0 pam_nologin.so > auth=A0=A0=A0=A0=A0=A0 sufficient=A0=A0=A0=A0 pam_stack.so = service=3Dsystem-auth > auth=A0=A0=A0=A0=A0=A0 sufficient=A0 pam_mysql.so user=3Duser = passwd=3Dpass db=3Ddb=20 > table=3Dtabke usercolumn=3Dusername passwdcolumn=3Dpassword crypt=3D0=20= > verbose=3D1 > account=A0=A0=A0 sufficient=A0=A0=A0=A0 pam_stack.so = service=3Dsystem-auth > account=A0=A0=A0 sufficient=A0=A0 pam_mysql.so user=3Duser = passwd=3Dpass db=3Ddb=20 > table=3Dtabke usercolumn=3Dusername passwdcolumn=3Dpassword crypt=3D0=20= > verbose=3D1 > session=A0=A0=A0 required=A0=A0=A0=A0 pam_stack.so = service=3Dsystem-auth > > I have tested this with both vsftpd and sshd.=A0 With vsftpd and = 0.6.0,=20 > I get the following weird error with md5: > Jun 22 18:41:22 hostname vsftpd[17656]: pam_mysql - non-crypt()ish=20 > MD5 hash is not supported in this build. > > Here is a secure log snippet: > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - option verbose is=20= > set to "1" > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_close_db() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_sm_authenticate() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_open_db() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_open_db() returning 0. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_check_passwd() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_format_string() called > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_quick_escape() called. > Jun 22 20:01:43 hostname last message repeated 3 times > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - SELECT password=20= > FROM table WHERE username =3D 'jomama' > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_sql_log() called. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_sql_log() returning 0. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_mysql_check_passwd() returning 0. > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql -=20 > pam_sm_authenticate() returning 0. > > > Also, this is what I get from the client end of things: > 220 (vsFTPd 2.0.1) > 530 Please login with USER and PASS. > 530 Please login with USER and PASS. > KERBEROS_V4 rejected as an authentication type > Name (192.168.1.35:jomama): jomama > 331 Please specify the password. > Password: > 500 OOPS: priv_sock_get_result > Login failed. > 421 Service not available, remote server has closed connection > ftp> > > > Any ideas? |
|
From: Terry <td...@gm...> - 2005-06-23 15:18:52
|
WHEW! After 20 or so builds, flipping options around, and trying different= =20 formts, i got it to work. Thanks VERY much for your explanations. On 6/23/05, Moriyoshi Koizumi <mor...@at...> wrote: >=20 > Hi, >=20 > As I replied to your post in the forum, --with-openssl needs to be > specified in configure. >=20 > To clarify the difference between crypt()ish and non-crypt()ish; > crypt()ish MD5 is supported in libc and you can enable it by > setting "Y" and "true" to the crypt and use_md5 parameters > respectively, which will result in the following form: >=20 > $1$abcdefgh$Kn5qrjcQzV7oAHBJ23Cu3/ >=20 > Non-crypt()ish MD5 is probably what most people consider to be > MD5. It is supported with the help of OpenSSL (or Cyrus-SASL) > and enabled by setting "MD5" to the crypt parameter, which > will result in the following form: >=20 > d8e8fca2dc0f896fd7cb4cb0031ba249 >=20 > Regards, > Moriyoshi >=20 > On 2005/06/23, at 9:05, Terry wrote: >=20 > > My goal is to use md5. Here are some details: > > > > Linux hostname 2.6.8-1um #1 Tue Jun 21 20:41:51 CDT 2005 i686 i686 > > i386 GNU/Linux > > mysql-4.1.10a-1.RHEL4.1 > > mysql-server-4.1.10a-1.RHEL4.1 > > pam-0.77-65.1 > > > > auth required pam_nologin.so > > auth sufficient pam_stack.so service=3Dsystem-auth > > auth sufficient pam_mysql.so user=3Duser passwd=3Dpass db=3Ddb > > table=3Dtabke usercolumn=3Dusername passwdcolumn=3Dpassword crypt=3D0 > > verbose=3D1 > > account sufficient pam_stack.so service=3Dsystem-auth > > account sufficient pam_mysql.so user=3Duser passwd=3Dpass db=3Ddb > > table=3Dtabke usercolumn=3Dusername passwdcolumn=3Dpassword crypt=3D0 > > verbose=3D1 > > session required pam_stack.so service=3Dsystem-auth > > > > I have tested this with both vsftpd and sshd. With vsftpd and 0.6.0, > > I get the following weird error with md5: > > Jun 22 18:41:22 hostname vsftpd[17656]: pam_mysql - non-crypt()ish > > MD5 hash is not supported in this build. > > > > Here is a secure log snippet: > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - option verbose is > > set to "1" > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_mysql_close_db() called. > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_sm_authenticate() called. > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_mysql_open_db() called. > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_mysql_open_db() returning 0. > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_mysql_check_passwd() called. > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_mysql_format_string() called > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_mysql_quick_escape() called. > > Jun 22 20:01:43 hostname last message repeated 3 times > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - SELECT password > > FROM table WHERE username =3D 'jomama' > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_mysql_sql_log() called. > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_mysql_sql_log() returning 0. > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_mysql_check_passwd() returning 0. > > Jun 22 20:01:43 hostname vsftpd[22789]: pam_mysql - > > pam_sm_authenticate() returning 0. > > > > > > Also, this is what I get from the client end of things: > > 220 (vsFTPd 2.0.1) > > 530 Please login with USER and PASS. > > 530 Please login with USER and PASS. > > KERBEROS_V4 rejected as an authentication type > > Name (192.168.1.35:jomama): jomama > > 331 Please specify the password. > > Password: > > 500 OOPS: priv_sock_get_result > > Login failed. > > 421 Service not available, remote server has closed connection > > ftp> > > > > > > Any ideas? >=20 > |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X