webadmin-list — Webmin users mailing list

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Khan, M. [SMO] <MK...@fr...>]

Hi Jamie,
Here is my passwd file:  Pls tell me what I am doing worng.
#%PAM-1.0
password    required      pam_cracklib.so
password    sufficient    pam_ldap.so
password    sufficient    pam_unix.so
password    required      pam_deny.so



Thanks
Mohammed

-----Original Message-----
From: web...@li...
[mailto:web...@li...]On Behalf Of Jamie
Cameron
Sent: Thursday, February 16, 2006 2:46 PM
To: web...@li...
Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan


Just make sure that /etc/pam.d/passwd is setup to talk to LDAP, and that Us=
ermin's
Change Password module is setup to use PAM.

 - Jamie

On 17/Feb/2006 09:42 Khan, Mohammed [SMO] wrote ..
> Hello Jamie,=20
> Do you know how can I use usermin to change my ldap password.  Please need
> your help.
>=20
> Thanks
> Mohammed
>=20
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...]On Behalf Of Jamie
> Cameron
> Sent: Thursday, February 16, 2006 2:28 PM
> To: web...@li...
> Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
>=20
>=20
> Did you set up /etc/pam.d/usermin as well? My last set of instructions
> only
> mentioned /etc/pam.d/webmin , sorry ..
>=20
>  - Jamie
>=20
> On 17/Feb/2006 09:25 Khan, Mohammed [SMO] wrote ..
> > Hi Jamie,=20
> > Sorry to bug u sir.  I am still getting the same error when login using
> > ldap user into usermin.  Here is error:
> > Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: check pass; user unkn=
own
> > Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: authentication failur=
e;
> > logname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D
> >=20
> > And here is mt .ssh file
> > #%PAM-1.0
> > auth     required   /lib/security/pam_securetty.so
> > auth     required   /lib/security/pam_nologin.so
> > auth     required   /lib/security/pam_env.so
> > auth     sufficient /lib/security/pam_ldap.so
> > auth     required   /lib/security/pam_unix_auth.so use_first_pass # set=
_secrpc
> > account  required   /lib/security/pam_unix.so
> > account  required   /lib/security/pam_nologin.so
> > session  required   /lib/security/pam_unix.so
> > session  required   /lib/security/pam_limits.so
> >=20
> >=20
> > Please lete me know..
> >=20
> > Thanks
> >=20
> > -----Original Message-----
> > From: web...@li...
> > [mailto:web...@li...]On Behalf Of Jamie
> > Cameron
> > Sent: Friday, February 17, 2006 1:04 AM
> > To: web...@li...
> > Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
> >=20
> >=20
> > Hi,
> > Make sure that in /etc/pam.d/webmin there are entries to call pam_ldap.=
so
> > , just like in your system's other PAM config files. Or just copy /etc/=
pam.d/ssh
> > to /etc/pam.d/webmin , assuming that SSH logins as LDAP users are worki=
ng.
> >=20
> >  - Jamie
> >=20
> > -----Original Message-----
> >=20
> > From:  "Khan, Mohammed [SMO]" <MK...@fr...>
> > Subj:  RE: [webmin-l] Webmin Servers, Broadcast/scan
> > Date:  Fri 17 Feb 2006 8:39 am
> > Size:  2K
> > To:  <web...@li...>
> >=20
> > Hi Jamie,=20
> > I getting the following errors:
> > Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: check pass; user unkn=
own
> > Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: authentication failur=
e;
> > logname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D
> >=20
> > When login with ldap user.
> >=20
> > Please advise.
> >=20
> > Thanks
> >=20
> >=20
> > -----Original Message-----
> > From: web...@li...
> > [mailto:web...@li...]On Behalf Of Jamie
> > Cameron
> > Sent: Wednesday, February 15, 2006 7:31 PM
> > To: web...@li...
> > Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
> >=20
> >=20
> > On 16/Feb/2006 13:13 Neal Morgan wrote ..
> > > Jamie:
> > >=20
> > > Short answer: ethereal shows it still using port 10000 for broadcast.
> > >=20
> > > Long answer: I first set the UDP port to 6789, ran a netstat to confi=
rm
> > > a listener was in place there are none existed on 10000, then ran the
> > > broadcast.
> >=20
> > I looked into this some more, and found the cause of this problem - the
> > sending
> > server isn't properly getting the UDP port to send to from it's own con=
figuration.
> > The work-around is to add the line=20
> >=20
> > listen=3D6789
> >=20
> > to the file /etc/webmin/servers/config on the sending system.
> > =20
> > > On the multihome: the IPs resolve to different hosts and FQDNs. =20
> > >=20
> > > Both servers have 2 NICs:
> > >=20
> > > 10.X.X.X/255.255.255.0=20
> > > 66.X.X.X/255.255.255.224
> > >=20
> > > Webmin broadcasts correctly to the expected two network addresses:
> > >=20
> > > 10.X.X.255=20
> > > 66.X.X.223
> > >=20
> > > But it also adds in a broadcast to all networks, and a broadcast to
> the
> > > 10 net as a class A:
> > >=20
> > > 255.255.255.255
> > > 10.255.255.255
> > >=20
> > > Ethereal shows the 10.255.255.255 ignored (not on my network), the
> > > 10.x.x.255 received by the first NIC, and the 66.X.X.223 and
> > > 255.255.255.255 received by the second NIC.
> > >=20
> > > So - it should receive 3 responses.  Somehow, it is already de-duping
> > > them and concluding there are 2 new servers to add.  I'm OK with that
> > -
> > > except it uses the same host name and port for both.  So, there is
> > > nothing I can see from the edit screen that indicates why it thinks
> they
> > > are different. =20
> > >=20
> > > Furthermore, if I broadcast again, I would expect it to either re-add
> > > both, or add nothing.  Instead, it adds just one of them!  Every new
> > > broadcast adds one more server with the same name, same config settin=
gs.
> > >=20
> > >=20
> > > Hope that helps and wasn't too much information.
> >=20
> > Ok, I see what is going on how - Webmin isn't handling a packet being
> > received twice from the same address in the same scan. This will be fix=
ed
> > in the next release though.
> >=20
> >  - Jamie
> >=20
> >=20
> > -------------------------------------------------------
> > This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> > files
> > for problems?  Stop!  Download the new AJAX search engine that makes
> > searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> > http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=
=3D121642
> >=20
> > --- message truncated ---
> >=20
> >=20
> >=20
> >=20
> > -------------------------------------------------------
> > This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> > files
> > for problems?  Stop!  Download the new AJAX search engine that makes
> > searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> > http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=
=3D121642
> > -
> > Forwarded by the Webmin mailing list at web...@li...=
.net
> > To remove yourself from this list, go to
> > http://lists.sourceforge.net/lists/listinfo/webadmin-list
> >=20
> > Notice:  All email and instant messages (including attachments) sent
> to
> > or from Franklin Templeton Investments (FTI) personnel may be retained,
> > monitored and/or reviewed by FTI and its agents, or authorized
> > law enforcement personnel, without further notice or consent.
> >=20
> >=20
> > -------------------------------------------------------
> > This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> > files
> > for problems?  Stop!  Download the new AJAX search engine that makes
> > searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> > http://sel.as-us.falkag.net/sel?cmd-
> > Forwarded by the Webmin mailing list at web...@li...=
.net
> > To remove yourself from this list, go to
> > http://lists.sourceforge.net/lists/listinfo/webadmin-list
>=20
>=20
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=
=3D121642
> -
> Forwarded by the Webmin mailing list at web...@li....n=
et
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
>=20
> Notice:  All email and instant messages (including attachments) sent to
> or from Franklin Templeton Investments (FTI) personnel may be retained,
> monitored and/or reviewed by FTI and its agents, or authorized
> law enforcement personnel, without further notice or consent.
>=20
>=20
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd-
> Forwarded by the Webmin mailing list at web...@li....n=
et
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=3D1=
21642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Jamie C. <jca...@we...>]

Just make sure that /etc/pam.d/passwd is setup to talk to LDAP, and that Usermin's
Change Password module is setup to use PAM.

 - Jamie

On 17/Feb/2006 09:42 Khan, Mohammed [SMO] wrote ..
> Hello Jamie, 
> Do you know how can I use usermin to change my ldap password.  Please need
> your help.
> 
> Thanks
> Mohammed
> 
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...]On Behalf Of Jamie
> Cameron
> Sent: Thursday, February 16, 2006 2:28 PM
> To: web...@li...
> Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
> 
> 
> Did you set up /etc/pam.d/usermin as well? My last set of instructions
> only
> mentioned /etc/pam.d/webmin , sorry ..
> 
>  - Jamie
> 
> On 17/Feb/2006 09:25 Khan, Mohammed [SMO] wrote ..
> > Hi Jamie, 
> > Sorry to bug u sir.  I am still getting the same error when login using
> > ldap user into usermin.  Here is error:
> > Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: check pass; user unknown
> > Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: authentication failure;
> > logname= uid=0 euid=0 tty= ruser= rhost=
> > 
> > And here is mt .ssh file
> > #%PAM-1.0
> > auth     required   /lib/security/pam_securetty.so
> > auth     required   /lib/security/pam_nologin.so
> > auth     required   /lib/security/pam_env.so
> > auth     sufficient /lib/security/pam_ldap.so
> > auth     required   /lib/security/pam_unix_auth.so use_first_pass # set_secrpc
> > account  required   /lib/security/pam_unix.so
> > account  required   /lib/security/pam_nologin.so
> > session  required   /lib/security/pam_unix.so
> > session  required   /lib/security/pam_limits.so
> > 
> > 
> > Please lete me know..
> > 
> > Thanks
> > 
> > -----Original Message-----
> > From: web...@li...
> > [mailto:web...@li...]On Behalf Of Jamie
> > Cameron
> > Sent: Friday, February 17, 2006 1:04 AM
> > To: web...@li...
> > Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
> > 
> > 
> > Hi,
> > Make sure that in /etc/pam.d/webmin there are entries to call pam_ldap.so
> > , just like in your system's other PAM config files. Or just copy /etc/pam.d/ssh
> > to /etc/pam.d/webmin , assuming that SSH logins as LDAP users are working.
> > 
> >  - Jamie
> > 
> > -----Original Message-----
> > 
> > From:  "Khan, Mohammed [SMO]" <MK...@fr...>
> > Subj:  RE: [webmin-l] Webmin Servers, Broadcast/scan
> > Date:  Fri 17 Feb 2006 8:39 am
> > Size:  2K
> > To:  <web...@li...>
> > 
> > Hi Jamie, 
> > I getting the following errors:
> > Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: check pass; user unknown
> > Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: authentication failure;
> > logname= uid=0 euid=0 tty= ruser= rhost=
> > 
> > When login with ldap user.
> > 
> > Please advise.
> > 
> > Thanks
> > 
> > 
> > -----Original Message-----
> > From: web...@li...
> > [mailto:web...@li...]On Behalf Of Jamie
> > Cameron
> > Sent: Wednesday, February 15, 2006 7:31 PM
> > To: web...@li...
> > Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
> > 
> > 
> > On 16/Feb/2006 13:13 Neal Morgan wrote ..
> > > Jamie:
> > > 
> > > Short answer: ethereal shows it still using port 10000 for broadcast.
> > > 
> > > Long answer: I first set the UDP port to 6789, ran a netstat to confirm
> > > a listener was in place there are none existed on 10000, then ran the
> > > broadcast.
> > 
> > I looked into this some more, and found the cause of this problem - the
> > sending
> > server isn't properly getting the UDP port to send to from it's own configuration.
> > The work-around is to add the line 
> > 
> > listen=6789
> > 
> > to the file /etc/webmin/servers/config on the sending system.
> >  
> > > On the multihome: the IPs resolve to different hosts and FQDNs.  
> > > 
> > > Both servers have 2 NICs:
> > > 
> > > 10.X.X.X/255.255.255.0 
> > > 66.X.X.X/255.255.255.224
> > > 
> > > Webmin broadcasts correctly to the expected two network addresses:
> > > 
> > > 10.X.X.255 
> > > 66.X.X.223
> > > 
> > > But it also adds in a broadcast to all networks, and a broadcast to
> the
> > > 10 net as a class A:
> > > 
> > > 255.255.255.255
> > > 10.255.255.255
> > > 
> > > Ethereal shows the 10.255.255.255 ignored (not on my network), the
> > > 10.x.x.255 received by the first NIC, and the 66.X.X.223 and
> > > 255.255.255.255 received by the second NIC.
> > > 
> > > So - it should receive 3 responses.  Somehow, it is already de-duping
> > > them and concluding there are 2 new servers to add.  I'm OK with that
> > -
> > > except it uses the same host name and port for both.  So, there is
> > > nothing I can see from the edit screen that indicates why it thinks
> they
> > > are different.  
> > > 
> > > Furthermore, if I broadcast again, I would expect it to either re-add
> > > both, or add nothing.  Instead, it adds just one of them!  Every new
> > > broadcast adds one more server with the same name, same config settings.
> > > 
> > > 
> > > Hope that helps and wasn't too much information.
> > 
> > Ok, I see what is going on how - Webmin isn't handling a packet being
> > received twice from the same address in the same scan. This will be fixed
> > in the next release though.
> > 
> >  - Jamie
> > 
> > 
> > -------------------------------------------------------
> > This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> > files
> > for problems?  Stop!  Download the new AJAX search engine that makes
> > searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
> > 
> > --- message truncated ---
> > 
> > 
> > 
> > 
> > -------------------------------------------------------
> > This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> > files
> > for problems?  Stop!  Download the new AJAX search engine that makes
> > searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
> > -
> > Forwarded by the Webmin mailing list at web...@li...
> > To remove yourself from this list, go to
> > http://lists.sourceforge.net/lists/listinfo/webadmin-list
> > 
> > Notice:  All email and instant messages (including attachments) sent
> to
> > or from Franklin Templeton Investments (FTI) personnel may be retained,
> > monitored and/or reviewed by FTI and its agents, or authorized
> > law enforcement personnel, without further notice or consent.
> > 
> > 
> > -------------------------------------------------------
> > This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> > files
> > for problems?  Stop!  Download the new AJAX search engine that makes
> > searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> > http://sel.as-us.falkag.net/sel?cmd-
> > Forwarded by the Webmin mailing list at web...@li...
> > To remove yourself from this list, go to
> > http://lists.sourceforge.net/lists/listinfo/webadmin-list
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
> -
> Forwarded by the Webmin mailing list at web...@li...
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
> 
> Notice:  All email and instant messages (including attachments) sent to
> or from Franklin Templeton Investments (FTI) personnel may be retained,
> monitored and/or reviewed by FTI and its agents, or authorized
> law enforcement personnel, without further notice or consent.
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd-
> Forwarded by the Webmin mailing list at web...@li...
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Khan, M. [SMO] <MK...@fr...>]

Hello Jamie,=20
Do you know how can I use usermin to change my ldap password.  Please need =
your help.

Thanks
Mohammed

-----Original Message-----
From: web...@li...
[mailto:web...@li...]On Behalf Of Jamie
Cameron
Sent: Thursday, February 16, 2006 2:28 PM
To: web...@li...
Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan


Did you set up /etc/pam.d/usermin as well? My last set of instructions only
mentioned /etc/pam.d/webmin , sorry ..

 - Jamie

On 17/Feb/2006 09:25 Khan, Mohammed [SMO] wrote ..
> Hi Jamie,=20
> Sorry to bug u sir.  I am still getting the same error when login using
> ldap user into usermin.  Here is error:
> Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: check pass; user unknown
> Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: authentication failure;
> logname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D
>=20
> And here is mt .ssh file
> #%PAM-1.0
> auth     required   /lib/security/pam_securetty.so
> auth     required   /lib/security/pam_nologin.so
> auth     required   /lib/security/pam_env.so
> auth     sufficient /lib/security/pam_ldap.so
> auth     required   /lib/security/pam_unix_auth.so use_first_pass # set_s=
ecrpc
> account  required   /lib/security/pam_unix.so
> account  required   /lib/security/pam_nologin.so
> session  required   /lib/security/pam_unix.so
> session  required   /lib/security/pam_limits.so
>=20
>=20
> Please lete me know..
>=20
> Thanks
>=20
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...]On Behalf Of Jamie
> Cameron
> Sent: Friday, February 17, 2006 1:04 AM
> To: web...@li...
> Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
>=20
>=20
> Hi,
> Make sure that in /etc/pam.d/webmin there are entries to call pam_ldap.so
> , just like in your system's other PAM config files. Or just copy /etc/pa=
m=2Ed/ssh
> to /etc/pam.d/webmin , assuming that SSH logins as LDAP users are working.
>=20
>  - Jamie
>=20
> -----Original Message-----
>=20
> From:  "Khan, Mohammed [SMO]" <MK...@fr...>
> Subj:  RE: [webmin-l] Webmin Servers, Broadcast/scan
> Date:  Fri 17 Feb 2006 8:39 am
> Size:  2K
> To:  <web...@li...>
>=20
> Hi Jamie,=20
> I getting the following errors:
> Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: check pass; user unknown
> Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: authentication failure;
> logname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D
>=20
> When login with ldap user.
>=20
> Please advise.
>=20
> Thanks
>=20
>=20
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...]On Behalf Of Jamie
> Cameron
> Sent: Wednesday, February 15, 2006 7:31 PM
> To: web...@li...
> Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
>=20
>=20
> On 16/Feb/2006 13:13 Neal Morgan wrote ..
> > Jamie:
> >=20
> > Short answer: ethereal shows it still using port 10000 for broadcast.
> >=20
> > Long answer: I first set the UDP port to 6789, ran a netstat to confirm
> > a listener was in place there are none existed on 10000, then ran the
> > broadcast.
>=20
> I looked into this some more, and found the cause of this problem - the
> sending
> server isn't properly getting the UDP port to send to from it's own confi=
guration.
> The work-around is to add the line=20
>=20
> listen=3D6789
>=20
> to the file /etc/webmin/servers/config on the sending system.
> =20
> > On the multihome: the IPs resolve to different hosts and FQDNs. =20
> >=20
> > Both servers have 2 NICs:
> >=20
> > 10.X.X.X/255.255.255.0=20
> > 66.X.X.X/255.255.255.224
> >=20
> > Webmin broadcasts correctly to the expected two network addresses:
> >=20
> > 10.X.X.255=20
> > 66.X.X.223
> >=20
> > But it also adds in a broadcast to all networks, and a broadcast to the
> > 10 net as a class A:
> >=20
> > 255.255.255.255
> > 10.255.255.255
> >=20
> > Ethereal shows the 10.255.255.255 ignored (not on my network), the
> > 10.x.x.255 received by the first NIC, and the 66.X.X.223 and
> > 255.255.255.255 received by the second NIC.
> >=20
> > So - it should receive 3 responses.  Somehow, it is already de-duping
> > them and concluding there are 2 new servers to add.  I'm OK with that
> -
> > except it uses the same host name and port for both.  So, there is
> > nothing I can see from the edit screen that indicates why it thinks they
> > are different. =20
> >=20
> > Furthermore, if I broadcast again, I would expect it to either re-add
> > both, or add nothing.  Instead, it adds just one of them!  Every new
> > broadcast adds one more server with the same name, same config settings.
> >=20
> >=20
> > Hope that helps and wasn't too much information.
>=20
> Ok, I see what is going on how - Webmin isn't handling a packet being
> received twice from the same address in the same scan. This will be fixed
> in the next release though.
>=20
>  - Jamie
>=20
>=20
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=
=3D121642
>=20
> --- message truncated ---
>=20
>=20
>=20
>=20
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=
=3D121642
> -
> Forwarded by the Webmin mailing list at web...@li....n=
et
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
>=20
> Notice:  All email and instant messages (including attachments) sent to
> or from Franklin Templeton Investments (FTI) personnel may be retained,
> monitored and/or reviewed by FTI and its agents, or authorized
> law enforcement personnel, without further notice or consent.
>=20
>=20
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd-
> Forwarded by the Webmin mailing list at web...@li....n=
et
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=3D1=
21642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Khan, M. [SMO] <MK...@fr...>]

Sorry Jamie, it was only for usermin...but I made some changes in ldap.conf=
 file and as per instu.  I copied my .ssh to usermin file it working.  Than=
ks so much sir.

-----Original Message-----
From: web...@li...
[mailto:web...@li...]On Behalf Of Jamie
Cameron
Sent: Thursday, February 16, 2006 2:28 PM
To: web...@li...
Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan


Did you set up /etc/pam.d/usermin as well? My last set of instructions only
mentioned /etc/pam.d/webmin , sorry ..

 - Jamie

On 17/Feb/2006 09:25 Khan, Mohammed [SMO] wrote ..
> Hi Jamie,=20
> Sorry to bug u sir.  I am still getting the same error when login using
> ldap user into usermin.  Here is error:
> Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: check pass; user unknown
> Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: authentication failure;
> logname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D
>=20
> And here is mt .ssh file
> #%PAM-1.0
> auth     required   /lib/security/pam_securetty.so
> auth     required   /lib/security/pam_nologin.so
> auth     required   /lib/security/pam_env.so
> auth     sufficient /lib/security/pam_ldap.so
> auth     required   /lib/security/pam_unix_auth.so use_first_pass # set_s=
ecrpc
> account  required   /lib/security/pam_unix.so
> account  required   /lib/security/pam_nologin.so
> session  required   /lib/security/pam_unix.so
> session  required   /lib/security/pam_limits.so
>=20
>=20
> Please lete me know..
>=20
> Thanks
>=20
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...]On Behalf Of Jamie
> Cameron
> Sent: Friday, February 17, 2006 1:04 AM
> To: web...@li...
> Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
>=20
>=20
> Hi,
> Make sure that in /etc/pam.d/webmin there are entries to call pam_ldap.so
> , just like in your system's other PAM config files. Or just copy /etc/pa=
m=2Ed/ssh
> to /etc/pam.d/webmin , assuming that SSH logins as LDAP users are working.
>=20
>  - Jamie
>=20
> -----Original Message-----
>=20
> From:  "Khan, Mohammed [SMO]" <MK...@fr...>
> Subj:  RE: [webmin-l] Webmin Servers, Broadcast/scan
> Date:  Fri 17 Feb 2006 8:39 am
> Size:  2K
> To:  <web...@li...>
>=20
> Hi Jamie,=20
> I getting the following errors:
> Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: check pass; user unknown
> Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: authentication failure;
> logname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D
>=20
> When login with ldap user.
>=20
> Please advise.
>=20
> Thanks
>=20
>=20
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...]On Behalf Of Jamie
> Cameron
> Sent: Wednesday, February 15, 2006 7:31 PM
> To: web...@li...
> Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
>=20
>=20
> On 16/Feb/2006 13:13 Neal Morgan wrote ..
> > Jamie:
> >=20
> > Short answer: ethereal shows it still using port 10000 for broadcast.
> >=20
> > Long answer: I first set the UDP port to 6789, ran a netstat to confirm
> > a listener was in place there are none existed on 10000, then ran the
> > broadcast.
>=20
> I looked into this some more, and found the cause of this problem - the
> sending
> server isn't properly getting the UDP port to send to from it's own confi=
guration.
> The work-around is to add the line=20
>=20
> listen=3D6789
>=20
> to the file /etc/webmin/servers/config on the sending system.
> =20
> > On the multihome: the IPs resolve to different hosts and FQDNs. =20
> >=20
> > Both servers have 2 NICs:
> >=20
> > 10.X.X.X/255.255.255.0=20
> > 66.X.X.X/255.255.255.224
> >=20
> > Webmin broadcasts correctly to the expected two network addresses:
> >=20
> > 10.X.X.255=20
> > 66.X.X.223
> >=20
> > But it also adds in a broadcast to all networks, and a broadcast to the
> > 10 net as a class A:
> >=20
> > 255.255.255.255
> > 10.255.255.255
> >=20
> > Ethereal shows the 10.255.255.255 ignored (not on my network), the
> > 10.x.x.255 received by the first NIC, and the 66.X.X.223 and
> > 255.255.255.255 received by the second NIC.
> >=20
> > So - it should receive 3 responses.  Somehow, it is already de-duping
> > them and concluding there are 2 new servers to add.  I'm OK with that
> -
> > except it uses the same host name and port for both.  So, there is
> > nothing I can see from the edit screen that indicates why it thinks they
> > are different. =20
> >=20
> > Furthermore, if I broadcast again, I would expect it to either re-add
> > both, or add nothing.  Instead, it adds just one of them!  Every new
> > broadcast adds one more server with the same name, same config settings.
> >=20
> >=20
> > Hope that helps and wasn't too much information.
>=20
> Ok, I see what is going on how - Webmin isn't handling a packet being
> received twice from the same address in the same scan. This will be fixed
> in the next release though.
>=20
>  - Jamie
>=20
>=20
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=
=3D121642
>=20
> --- message truncated ---
>=20
>=20
>=20
>=20
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=
=3D121642
> -
> Forwarded by the Webmin mailing list at web...@li....n=
et
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
>=20
> Notice:  All email and instant messages (including attachments) sent to
> or from Franklin Templeton Investments (FTI) personnel may be retained,
> monitored and/or reviewed by FTI and its agents, or authorized
> law enforcement personnel, without further notice or consent.
>=20
>=20
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd-
> Forwarded by the Webmin mailing list at web...@li....n=
et
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=3D1=
21642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Jamie C. <jca...@we...>]

Did you set up /etc/pam.d/usermin as well? My last set of instructions only
mentioned /etc/pam.d/webmin , sorry ..

 - Jamie

On 17/Feb/2006 09:25 Khan, Mohammed [SMO] wrote ..
> Hi Jamie, 
> Sorry to bug u sir.  I am still getting the same error when login using
> ldap user into usermin.  Here is error:
> Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: check pass; user unknown
> Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: authentication failure;
> logname= uid=0 euid=0 tty= ruser= rhost=
> 
> And here is mt .ssh file
> #%PAM-1.0
> auth     required   /lib/security/pam_securetty.so
> auth     required   /lib/security/pam_nologin.so
> auth     required   /lib/security/pam_env.so
> auth     sufficient /lib/security/pam_ldap.so
> auth     required   /lib/security/pam_unix_auth.so use_first_pass # set_secrpc
> account  required   /lib/security/pam_unix.so
> account  required   /lib/security/pam_nologin.so
> session  required   /lib/security/pam_unix.so
> session  required   /lib/security/pam_limits.so
> 
> 
> Please lete me know..
> 
> Thanks
> 
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...]On Behalf Of Jamie
> Cameron
> Sent: Friday, February 17, 2006 1:04 AM
> To: web...@li...
> Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
> 
> 
> Hi,
> Make sure that in /etc/pam.d/webmin there are entries to call pam_ldap.so
> , just like in your system's other PAM config files. Or just copy /etc/pam.d/ssh
> to /etc/pam.d/webmin , assuming that SSH logins as LDAP users are working.
> 
>  - Jamie
> 
> -----Original Message-----
> 
> From:  "Khan, Mohammed [SMO]" <MK...@fr...>
> Subj:  RE: [webmin-l] Webmin Servers, Broadcast/scan
> Date:  Fri 17 Feb 2006 8:39 am
> Size:  2K
> To:  <web...@li...>
> 
> Hi Jamie, 
> I getting the following errors:
> Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: check pass; user unknown
> Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: authentication failure;
> logname= uid=0 euid=0 tty= ruser= rhost=
> 
> When login with ldap user.
> 
> Please advise.
> 
> Thanks
> 
> 
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...]On Behalf Of Jamie
> Cameron
> Sent: Wednesday, February 15, 2006 7:31 PM
> To: web...@li...
> Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan
> 
> 
> On 16/Feb/2006 13:13 Neal Morgan wrote ..
> > Jamie:
> > 
> > Short answer: ethereal shows it still using port 10000 for broadcast.
> > 
> > Long answer: I first set the UDP port to 6789, ran a netstat to confirm
> > a listener was in place there are none existed on 10000, then ran the
> > broadcast.
> 
> I looked into this some more, and found the cause of this problem - the
> sending
> server isn't properly getting the UDP port to send to from it's own configuration.
> The work-around is to add the line 
> 
> listen=6789
> 
> to the file /etc/webmin/servers/config on the sending system.
>  
> > On the multihome: the IPs resolve to different hosts and FQDNs.  
> > 
> > Both servers have 2 NICs:
> > 
> > 10.X.X.X/255.255.255.0 
> > 66.X.X.X/255.255.255.224
> > 
> > Webmin broadcasts correctly to the expected two network addresses:
> > 
> > 10.X.X.255 
> > 66.X.X.223
> > 
> > But it also adds in a broadcast to all networks, and a broadcast to the
> > 10 net as a class A:
> > 
> > 255.255.255.255
> > 10.255.255.255
> > 
> > Ethereal shows the 10.255.255.255 ignored (not on my network), the
> > 10.x.x.255 received by the first NIC, and the 66.X.X.223 and
> > 255.255.255.255 received by the second NIC.
> > 
> > So - it should receive 3 responses.  Somehow, it is already de-duping
> > them and concluding there are 2 new servers to add.  I'm OK with that
> -
> > except it uses the same host name and port for both.  So, there is
> > nothing I can see from the edit screen that indicates why it thinks they
> > are different.  
> > 
> > Furthermore, if I broadcast again, I would expect it to either re-add
> > both, or add nothing.  Instead, it adds just one of them!  Every new
> > broadcast adds one more server with the same name, same config settings.
> > 
> > 
> > Hope that helps and wasn't too much information.
> 
> Ok, I see what is going on how - Webmin isn't handling a packet being
> received twice from the same address in the same scan. This will be fixed
> in the next release though.
> 
>  - Jamie
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
> 
> --- message truncated ---
> 
> 
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
> -
> Forwarded by the Webmin mailing list at web...@li...
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
> 
> Notice:  All email and instant messages (including attachments) sent to
> or from Franklin Templeton Investments (FTI) personnel may be retained,
> monitored and/or reviewed by FTI and its agents, or authorized
> law enforcement personnel, without further notice or consent.
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd-
> Forwarded by the Webmin mailing list at web...@li...
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Khan, M. [SMO] <MK...@fr...>]

Hi Jamie,=20
Sorry to bug u sir.  I am still getting the same error when login using lda=
p user into usermin.  Here is error:
Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: check pass; user unknown
Feb 16 14:23:08 dublx09 usermin(pam_unix)[32085]: authentication failure; l=
ogname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D

And here is mt .ssh file
#%PAM-1.0
auth     required   /lib/security/pam_securetty.so
auth     required   /lib/security/pam_nologin.so
auth     required   /lib/security/pam_env.so
auth     sufficient /lib/security/pam_ldap.so
auth     required   /lib/security/pam_unix_auth.so use_first_pass # set_sec=
rpc
account  required   /lib/security/pam_unix.so
account  required   /lib/security/pam_nologin.so
session  required   /lib/security/pam_unix.so
session  required   /lib/security/pam_limits.so


Please lete me know..

Thanks

-----Original Message-----
From: web...@li...
[mailto:web...@li...]On Behalf Of Jamie
Cameron
Sent: Friday, February 17, 2006 1:04 AM
To: web...@li...
Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan


Hi,
Make sure that in /etc/pam.d/webmin there are entries to call pam_ldap.so ,=
 just like in your system's other PAM config files. Or just copy /etc/pam.d=
/ssh to /etc/pam.d/webmin , assuming that SSH logins as LDAP users are work=
ing.

 - Jamie

-----Original Message-----

From:  "Khan, Mohammed [SMO]" <MK...@fr...>
Subj:  RE: [webmin-l] Webmin Servers, Broadcast/scan
Date:  Fri 17 Feb 2006 8:39 am
Size:  2K
To:  <web...@li...>

Hi Jamie,=20
I getting the following errors:
Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: check pass; user unknown
Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: authentication failure; l=
ogname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D

When login with ldap user.

Please advise.

Thanks


-----Original Message-----
From: web...@li...
[mailto:web...@li...]On Behalf Of Jamie
Cameron
Sent: Wednesday, February 15, 2006 7:31 PM
To: web...@li...
Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan


On 16/Feb/2006 13:13 Neal Morgan wrote ..
> Jamie:
>=20
> Short answer: ethereal shows it still using port 10000 for broadcast.
>=20
> Long answer: I first set the UDP port to 6789, ran a netstat to confirm
> a listener was in place there are none existed on 10000, then ran the
> broadcast.

I looked into this some more, and found the cause of this problem - the sen=
ding
server isn't properly getting the UDP port to send to from it's own configu=
ration.
The work-around is to add the line=20

listen=3D6789

to the file /etc/webmin/servers/config on the sending system.
=20
> On the multihome: the IPs resolve to different hosts and FQDNs. =20
>=20
> Both servers have 2 NICs:
>=20
> 10.X.X.X/255.255.255.0=20
> 66.X.X.X/255.255.255.224
>=20
> Webmin broadcasts correctly to the expected two network addresses:
>=20
> 10.X.X.255=20
> 66.X.X.223
>=20
> But it also adds in a broadcast to all networks, and a broadcast to the
> 10 net as a class A:
>=20
> 255.255.255.255
> 10.255.255.255
>=20
> Ethereal shows the 10.255.255.255 ignored (not on my network), the
> 10.x.x.255 received by the first NIC, and the 66.X.X.223 and
> 255.255.255.255 received by the second NIC.
>=20
> So - it should receive 3 responses.  Somehow, it is already de-duping
> them and concluding there are 2 new servers to add.  I'm OK with that -
> except it uses the same host name and port for both.  So, there is
> nothing I can see from the edit screen that indicates why it thinks they
> are different. =20
>=20
> Furthermore, if I broadcast again, I would expect it to either re-add
> both, or add nothing.  Instead, it adds just one of them!  Every new
> broadcast adds one more server with the same name, same config settings.
>=20
>=20
> Hope that helps and wasn't too much information.

Ok, I see what is going on how - Webmin isn't handling a packet being
received twice from the same address in the same scan. This will be fixed
in the next release though.

 - Jamie


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=3D1=
21642

--- message truncated ---




-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=3D1=
21642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Jamie C. <jca...@we...>]

Hi,
Make sure that in /etc/pam.d/webmin there are entries to call pam_ldap.so , just like in your system's other PAM config files. Or just copy /etc/pam.d/ssh to /etc/pam.d/webmin , assuming that SSH logins as LDAP users are working.

 - Jamie

-----Original Message-----

From:  "Khan, Mohammed [SMO]" <MK...@fr...>
Subj:  RE: [webmin-l] Webmin Servers, Broadcast/scan
Date:  Fri 17 Feb 2006 8:39 am
Size:  2K
To:  <web...@li...>

Hi Jamie, 
I getting the following errors:
Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: check pass; user unknown
Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=

When login with ldap user.

Please advise.

Thanks


-----Original Message-----
From: web...@li...
[mailto:web...@li...]On Behalf Of Jamie
Cameron
Sent: Wednesday, February 15, 2006 7:31 PM
To: web...@li...
Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan


On 16/Feb/2006 13:13 Neal Morgan wrote ..
> Jamie:
> 
> Short answer: ethereal shows it still using port 10000 for broadcast.
> 
> Long answer: I first set the UDP port to 6789, ran a netstat to confirm
> a listener was in place there are none existed on 10000, then ran the
> broadcast.

I looked into this some more, and found the cause of this problem - the sending
server isn't properly getting the UDP port to send to from it's own configuration.
The work-around is to add the line 

listen=6789

to the file /etc/webmin/servers/config on the sending system.
 
> On the multihome: the IPs resolve to different hosts and FQDNs.  
> 
> Both servers have 2 NICs:
> 
> 10.X.X.X/255.255.255.0 
> 66.X.X.X/255.255.255.224
> 
> Webmin broadcasts correctly to the expected two network addresses:
> 
> 10.X.X.255 
> 66.X.X.223
> 
> But it also adds in a broadcast to all networks, and a broadcast to the
> 10 net as a class A:
> 
> 255.255.255.255
> 10.255.255.255
> 
> Ethereal shows the 10.255.255.255 ignored (not on my network), the
> 10.x.x.255 received by the first NIC, and the 66.X.X.223 and
> 255.255.255.255 received by the second NIC.
> 
> So - it should receive 3 responses.  Somehow, it is already de-duping
> them and concluding there are 2 new servers to add.  I'm OK with that -
> except it uses the same host name and port for both.  So, there is
> nothing I can see from the edit screen that indicates why it thinks they
> are different.  
> 
> Furthermore, if I broadcast again, I would expect it to either re-add
> both, or add nothing.  Instead, it adds just one of them!  Every new
> broadcast adds one more server with the same name, same config settings.
> 
> 
> Hope that helps and wasn't too much information.

Ok, I see what is going on how - Webmin isn't handling a packet being
received twice from the same address in the same scan. This will be fixed
in the next release though.

 - Jamie


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642

--- message truncated ---

RE: [webmin-l] Change Password error

[Khan, M. [SMO] <MK...@fr...>]

Hi Jamie,=20
I getting the following errors:
Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: check pass; user unknown
Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: authentication failure; l=
ogname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D

When login with ldap user.

Please advise.

Thank

-----Original Message-----
From: web...@li...
[mailto:web...@li...]On Behalf Of Jamie
Cameron
Sent: Friday, February 17, 2006 12:57 AM
To: web...@li...
Subject: RE: [webmin-l] Change Password error


Hi Dave,
That is definately a bug..
What does the user in question have in the password field of his entry in /=
etc/passwd or /etc/shadow? Or more importantly, if you edit him in the User=
s and Groups module, does his encrypted password show up properly?

 - Jamie

-----Original Message-----

From:  Dave Isaacs <dav...@en...>
Subj:  RE: [webmin-l] Change Password error
Date:  Fri 17 Feb 2006 6:53 am
Size:  2K
To:  "'web...@li...'" <web...@li...=
ge.net>

Sorry, I have to take that back.  This doesn't work.
=20
Yes, it allows me to change the password, but now I can put anything in the
"Old Password" field and have it work.  That's bad.
=20
Dave I
=20
=20

-----Original Message-----
From: web...@li...
[mailto:web...@li...] On Behalf Of Dave Isaacs
Sent: Wednesday, February 15, 2006 6:23 PM
To: 'web...@li...'
Subject: RE: [webmin-l] Change Password error



That works.  Thanks!=20

Dave I=20

-----Original Message-----=20
From: web...@li...
[mailto:web...@li...
<mailto:web...@li...> ] On Behalf Of Jamie
Cameron

Sent: Wednesday, February 15, 2006 6:09 PM=20
To: web...@li...=20
Subject: RE: [webmin-l] Change Password error=20


Hi Dave,=20
Basically, all I did was change the function unix_crypt in the file
web-lib-funcs.pl to:=20

# unix_crypt(password, salt)=20
# Performs Unix encryption on a password, using crypt() or Crypt::UnixCrypt
sub unix_crypt { local ($pass, $salt) =3D @_;=20
return "" if (!$salt);   # same as real crypt=20
local $rv =3D eval "crypt(\$pass, \$salt)";=20
local $err =3D $@;=20
return $rv if ($rv && !$@);=20
eval "use Crypt::UnixCrypt";=20
if (!$@) {=20
        return Crypt::UnixCrypt::crypt($pass, $salt);=20
        }=20
else {=20
        &error("Failed to encrypt password : $err");=20
        }=20
}=20

You could do the same thing by directly editing that file in your copy of
Webmin.=20

 - Jamie=20

On 16/Feb/2006 00:54 Dave Isaacs wrote ..=20
> Is it possible to give me details (or at least hints) of what need to=20
> be fixed?  I have to deliver a production system by the end of the=20
> month and I have no working change password feature.=20
> =20
> Thanks=20
> =20
> Dave I=20
>=20
> -----Original Message-----=20
> From: web...@li...=20
> [mailto:web...@li...
<mailto:web...@li...> ] On Behalf Of Jamie=20
> Cameron=20
> Sent: Tuesday, February 14, 2006 6:39 PM=20
> To: web...@li...=20
> Subject: RE: [webmin-l] Change Password error=20
>=20
>=20
> There is another way it could happen - but I will deal with that in=20

--- message truncated ---




-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=3D1=
21642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.

RE: [webmin-l] Change Password error

[Jamie C. <jca...@we...>]

Hi Dave,
That is definately a bug..
What does the user in question have in the password field of his entry in /etc/passwd or /etc/shadow? Or more importantly, if you edit him in the Users and Groups module, does his encrypted password show up properly?

 - Jamie

-----Original Message-----

From:  Dave Isaacs <dav...@en...>
Subj:  RE: [webmin-l] Change Password error
Date:  Fri 17 Feb 2006 6:53 am
Size:  2K
To:  "'web...@li...'" <web...@li...>

Sorry, I have to take that back.  This doesn't work.
 
Yes, it allows me to change the password, but now I can put anything in the
"Old Password" field and have it work.  That's bad.
 
Dave I
 
 

-----Original Message-----
From: web...@li...
[mailto:web...@li...] On Behalf Of Dave Isaacs
Sent: Wednesday, February 15, 2006 6:23 PM
To: 'web...@li...'
Subject: RE: [webmin-l] Change Password error



That works.  Thanks! 

Dave I 

-----Original Message----- 
From: web...@li...
[mailto:web...@li...
<mailto:web...@li...> ] On Behalf Of Jamie
Cameron

Sent: Wednesday, February 15, 2006 6:09 PM 
To: web...@li... 
Subject: RE: [webmin-l] Change Password error 


Hi Dave, 
Basically, all I did was change the function unix_crypt in the file
web-lib-funcs.pl to: 

# unix_crypt(password, salt) 
# Performs Unix encryption on a password, using crypt() or Crypt::UnixCrypt
sub unix_crypt { local ($pass, $salt) = @_; 
return "" if (!$salt);   # same as real crypt 
local $rv = eval "crypt(\$pass, \$salt)"; 
local $err = $@; 
return $rv if ($rv && !$@); 
eval "use Crypt::UnixCrypt"; 
if (!$@) { 
        return Crypt::UnixCrypt::crypt($pass, $salt); 
        } 
else { 
        &error("Failed to encrypt password : $err"); 
        } 
} 

You could do the same thing by directly editing that file in your copy of
Webmin. 

 - Jamie 

On 16/Feb/2006 00:54 Dave Isaacs wrote .. 
> Is it possible to give me details (or at least hints) of what need to 
> be fixed?  I have to deliver a production system by the end of the 
> month and I have no working change password feature. 
>  
> Thanks 
>  
> Dave I 
> 
> -----Original Message----- 
> From: web...@li... 
> [mailto:web...@li...
<mailto:web...@li...> ] On Behalf Of Jamie 
> Cameron 
> Sent: Tuesday, February 14, 2006 6:39 PM 
> To: web...@li... 
> Subject: RE: [webmin-l] Change Password error 
> 
> 
> There is another way it could happen - but I will deal with that in 

--- message truncated ---

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Khan, M. [SMO] <MK...@fr...>]

Hi Jamie,=20
I getting the following errors:
Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: check pass; user unknown
Feb 16 13:37:09 dublx09 usermin(pam_unix)[31966]: authentication failure; l=
ogname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D

When login with ldap user.

Please advise.

Thanks


-----Original Message-----
From: web...@li...
[mailto:web...@li...]On Behalf Of Jamie
Cameron
Sent: Wednesday, February 15, 2006 7:31 PM
To: web...@li...
Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan


On 16/Feb/2006 13:13 Neal Morgan wrote ..
> Jamie:
>=20
> Short answer: ethereal shows it still using port 10000 for broadcast.
>=20
> Long answer: I first set the UDP port to 6789, ran a netstat to confirm
> a listener was in place there are none existed on 10000, then ran the
> broadcast.

I looked into this some more, and found the cause of this problem - the sen=
ding
server isn't properly getting the UDP port to send to from it's own configu=
ration.
The work-around is to add the line=20

listen=3D6789

to the file /etc/webmin/servers/config on the sending system.
=20
> On the multihome: the IPs resolve to different hosts and FQDNs. =20
>=20
> Both servers have 2 NICs:
>=20
> 10.X.X.X/255.255.255.0=20
> 66.X.X.X/255.255.255.224
>=20
> Webmin broadcasts correctly to the expected two network addresses:
>=20
> 10.X.X.255=20
> 66.X.X.223
>=20
> But it also adds in a broadcast to all networks, and a broadcast to the
> 10 net as a class A:
>=20
> 255.255.255.255
> 10.255.255.255
>=20
> Ethereal shows the 10.255.255.255 ignored (not on my network), the
> 10.x.x.255 received by the first NIC, and the 66.X.X.223 and
> 255.255.255.255 received by the second NIC.
>=20
> So - it should receive 3 responses.  Somehow, it is already de-duping
> them and concluding there are 2 new servers to add.  I'm OK with that -
> except it uses the same host name and port for both.  So, there is
> nothing I can see from the edit screen that indicates why it thinks they
> are different. =20
>=20
> Furthermore, if I broadcast again, I would expect it to either re-add
> both, or add nothing.  Instead, it adds just one of them!  Every new
> broadcast adds one more server with the same name, same config settings.
>=20
>=20
> Hope that helps and wasn't too much information.

Ok, I see what is going on how - Webmin isn't handling a packet being
received twice from the same address in the same scan. This will be fixed
in the next release though.

 - Jamie


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=3D1=
21642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.

RE: [webmin-l] Change Password error

[Dave I. <dav...@en...>]

Sorry, I have to take that back.  This doesn't work.
 
Yes, it allows me to change the password, but now I can put anything in the
"Old Password" field and have it work.  That's bad.
 
Dave I
 
 

-----Original Message-----
From: web...@li...
[mailto:web...@li...] On Behalf Of Dave Isaacs
Sent: Wednesday, February 15, 2006 6:23 PM
To: 'web...@li...'
Subject: RE: [webmin-l] Change Password error



That works.  Thanks! 

Dave I 

-----Original Message----- 
From: web...@li...
[mailto:web...@li...
<mailto:web...@li...> ] On Behalf Of Jamie
Cameron

Sent: Wednesday, February 15, 2006 6:09 PM 
To: web...@li... 
Subject: RE: [webmin-l] Change Password error 


Hi Dave, 
Basically, all I did was change the function unix_crypt in the file
web-lib-funcs.pl to: 

# unix_crypt(password, salt) 
# Performs Unix encryption on a password, using crypt() or Crypt::UnixCrypt
sub unix_crypt { local ($pass, $salt) = @_; 
return "" if (!$salt);   # same as real crypt 
local $rv = eval "crypt(\$pass, \$salt)"; 
local $err = $@; 
return $rv if ($rv && !$@); 
eval "use Crypt::UnixCrypt"; 
if (!$@) { 
        return Crypt::UnixCrypt::crypt($pass, $salt); 
        } 
else { 
        &error("Failed to encrypt password : $err"); 
        } 
} 

You could do the same thing by directly editing that file in your copy of
Webmin. 

 - Jamie 

On 16/Feb/2006 00:54 Dave Isaacs wrote .. 
> Is it possible to give me details (or at least hints) of what need to 
> be fixed?  I have to deliver a production system by the end of the 
> month and I have no working change password feature. 
>  
> Thanks 
>  
> Dave I 
> 
> -----Original Message----- 
> From: web...@li... 
> [mailto:web...@li...
<mailto:web...@li...> ] On Behalf Of Jamie 
> Cameron 
> Sent: Tuesday, February 14, 2006 6:39 PM 
> To: web...@li... 
> Subject: RE: [webmin-l] Change Password error 
> 
> 
> There is another way it could happen - but I will deal with that in 
> Webmin 1.270. 
> 
>  - Jamie 
> 
> On 15/Feb/2006 03:15 Dave Isaacs wrote .. 
> 
> In my case the password is NOT blank (I am trying to change the 
> password of the user I am currently logged in as).  Could there be 
> another problem? 
> 
> Thanks 
> 
> Dave I 
> 
> -----Original Message----- 
> From: web...@li... 
> [mailto:web...@li...
<mailto:web...@li...> ] On Behalf Of Jamie 
> Cameron 
> 
> Sent: Tuesday, February 14, 2006 3:14 AM 
> To: web...@li... 
> Subject: RE: [webmin-l] Change Password error 
> 
> 
> Hi Dave, 
> Thanks, I see the cause of this problem now ... it can happen if changing 
> the password of a user whose password is currently blank. The next release

> of Webmin will fix it though. 
> 
>  - Jamie 
> 
> -----Original Message----- 
> 
> From:  Dave Isaacs <dav...@en...> 
> Subj:  RE: [webmin-l] Change Password error 
> Date:  Tue 14 Feb 2006 1:08 am 
> Size:  4K 
> To:  "'web...@li...'" 
> <web...@li...> 
> 
>      RE: [webmin-l] Change Password error 
>     I am using the standard Change Password (passwd) module that is 
> packaged with Webmin 1.260. 
>   Thanks 
>   Dave I 
>   -----Original Message----- 
> From: web...@li... 
> [mailto:web...@li...
<mailto:web...@li...> ] On Behalf Of Jamie 
> Cameron 
> 
>   Sent: Saturday, February 11, 2006 4:56 AM 
> To: web...@li... 
> Subject: Re: [webmin-l] Change Password error 
>   
>   Hi Dave, 
> That looks like a bug in Webmin. 
> Which module are you doing the password change in though? It seems that 
> the 
> caller of unix_crypt is passing in the wrong parameters. 
> 
>   - Jamie 
>   -----Original Message----- 
>   From: Dave Isaacs dav...@en... 
> Subj: [webmin-l] Change Password error 
> Date: Sat 11 Feb 2006 5:01 am 
> Size: 2K 
> To: 'web...@li...' 
> web...@li... 
>    Message 
>  Previously, whenI was using the Webmin 1.230 (on RedHat EL3)passwd
module, 
> there were no problems. 
>   
> Now, using the Webmin 1.250 version, I get the error Failed to change 
> password : Failed to encrypt password :. 
>   
> Looking at web-funcs-lib.pl, at the unix_crypt() subroutine, I can see 
> that if the call to crypt() fails, then Crypt::UnixCrypt is used 
> instead. Indeed, in my case the 
> 
> 
> $rv = eval crypt(\$pass, \$salt); 
>   
> call is resulting in $rv being undef. The fallback to Crypt::UnixCrypt 
> does not work because I do not have that perl module installed. 
> 
> 
> Now my question is: why is the call to crypt() failing? It was not 
> failing previously. Doing a little digging, I discovered the when the 
> failure occurs, $pass is equal to the old password and $salt is equal 
> to undef. Without salt, crypt() appears to return nothing. Why is the 
> salt undef? 
> 
> 
> Thanks 
>   
> Dave Isaacs 
>   
>   
>   
>   ------------------------------------------------------- 
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log 
> files 
> for problems? Stop! Download the new AJAX search engine that makes
searching 
> your log files as easy as surfing the web. DOWNLOAD SPLUNK! 
> http://sel.as-us.falkag.net/sel?cmd=lnkkid=103432bid=230486dat=121642
<http://sel.as-us.falkag.net/sel?cmd=lnkkid=103432bid=230486dat=121642>  
> <http://sel.as-us.falkag.net/sel?cmd=lnkkid=103432bid=230486dat=121642
<http://sel.as-us.falkag.net/sel?cmd=lnkkid=103432bid=230486dat=121642> > 
> 
>   - 
> Forwarded by the Webmin mailing list at
web...@li... 
> To remove yourself from this list, go to 
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
<http://lists.sourceforge.net/lists/listinfo/webadmin-list>  
> <http://lists.sourceforge.net/lists/listinfo/webadmin-list
<http://lists.sourceforge.net/lists/listinfo/webadmin-list> >  
>   
> 
> 
> 
> ------------------------------------------------------- 
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log 
> files 
> for problems?  Stop!  Download the new AJAX search engine that makes 
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK! 
> http://sel.as-us.falkag.net/sel?cmd=lnk
<http://sel.as-us.falkag.net/sel?cmd=lnk>  
> <http://sel.as-us.falkag.net/sel?cmd=lnk
<http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642>
&kid=103432&bid=230486&dat=121642> 
> &kid=103432&bid=230486&dat=121642 
> 
> - 
> Forwarded by the Webmin mailing list at
web...@li... 
> To remove yourself from this list, go to 
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
<http://lists.sourceforge.net/lists/listinfo/webadmin-list>  
> <http://lists.sourceforge.net/lists/listinfo/webadmin-list
<http://lists.sourceforge.net/lists/listinfo/webadmin-list> >  


------------------------------------------------------- 
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files

for problems?  Stop!  Download the new AJAX search engine that makes 
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK! 
http://sel.as-us.falkag.net/sel?cmd=lnk
<http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642>
&kid=103432&bid=230486&dat=121642 
- 
Forwarded by the Webmin mailing list at web...@li... 
To remove yourself from this list, go to 
http://lists.sourceforge.net/lists/listinfo/webadmin-list
<http://lists.sourceforge.net/lists/listinfo/webadmin-list>  

RE: [webmin-l] Ladp users

[Khan, M. [SMO] <MK...@fr...>]

I have install the Per module.=20
In messages log I am seeing :=20
Feb 16 09:46:23 dublx09 usermin(pam_unix)[31815]: check pass; user unknown
Feb 16 09:46:23 dublx09 usermin(pam_unix)[31815]: authentication failure; l=
ogname=3D uid=3D0 euid=3D0 tty=3D ruser=3D rhost=3D

In secure log:
Feb 15 21:44:09 dublx09 webmin[31206]: Invalid login as root from 10.144.21=
.63
Feb 15 21:45:27 dublx09 webmin[31210]: Invalid login as root from 10.144.21=
.63


And I dont see /var/log/authlog log file.

Please let me know what shall I check next.

Thanks so much.
Mohammed

-----Original Message-----
From: web...@li...
[mailto:web...@li...]On Behalf Of Jamie
Cameron
Sent: Thursday, February 16, 2006 4:54 AM
To: web...@li...
Subject: Re: [webmin-l] Ladp users


Hi Mohammed,

Are you seeing any error messages in /var/log/secure or /var/log/authlog wh=
en users try to login? Also, do you have the Authen::PAM Perl module instal=
led?

 - Jamie

-----Original Message-----

From:  "Khan, Mohammed [SMO]" <MK...@fr...>
Subj:  [webmin-l] Ladp users
Date:  Thu 16 Feb 2006 12:48 pm
Size:  928 bytes
To:  <web...@li...>

Hello,=20
I am having problem with ldap user login to usermin.  Local users are able =
to login fine.  Just the ldap user I am having problem.  Please help.

Thanks
Mohammed

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list




-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=3D1=
21642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Neal M. <Ne...@mo...>]

Jamie:

I think you're right about it not reading its own configuration.  I
didn't know about that file. =20

FWIW - it does properly set the "listen" parm in the miniserv.conf file.


Thanks,

Neal Morgan

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Jamie C. <jca...@we...>]

On 16/Feb/2006 13:13 Neal Morgan wrote ..
> Jamie:
> 
> Short answer: ethereal shows it still using port 10000 for broadcast.
> 
> Long answer: I first set the UDP port to 6789, ran a netstat to confirm
> a listener was in place there are none existed on 10000, then ran the
> broadcast.

I looked into this some more, and found the cause of this problem - the sending
server isn't properly getting the UDP port to send to from it's own configuration.
The work-around is to add the line 

listen=6789

to the file /etc/webmin/servers/config on the sending system.
 
> On the multihome: the IPs resolve to different hosts and FQDNs.  
> 
> Both servers have 2 NICs:
> 
> 10.X.X.X/255.255.255.0 
> 66.X.X.X/255.255.255.224
> 
> Webmin broadcasts correctly to the expected two network addresses:
> 
> 10.X.X.255 
> 66.X.X.223
> 
> But it also adds in a broadcast to all networks, and a broadcast to the
> 10 net as a class A:
> 
> 255.255.255.255
> 10.255.255.255
> 
> Ethereal shows the 10.255.255.255 ignored (not on my network), the
> 10.x.x.255 received by the first NIC, and the 66.X.X.223 and
> 255.255.255.255 received by the second NIC.
> 
> So - it should receive 3 responses.  Somehow, it is already de-duping
> them and concluding there are 2 new servers to add.  I'm OK with that -
> except it uses the same host name and port for both.  So, there is
> nothing I can see from the edit screen that indicates why it thinks they
> are different.  
> 
> Furthermore, if I broadcast again, I would expect it to either re-add
> both, or add nothing.  Instead, it adds just one of them!  Every new
> broadcast adds one more server with the same name, same config settings.
> 
> 
> Hope that helps and wasn't too much information.

Ok, I see what is going on how - Webmin isn't handling a packet being
received twice from the same address in the same scan. This will be fixed
in the next release though.

 - Jamie

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Neal M. <Ne...@mo...>]

Jamie:

Short answer: ethereal shows it still using port 10000 for broadcast.

Long answer: I first set the UDP port to 6789, ran a netstat to confirm
a listener was in place there are none existed on 10000, then ran the
broadcast.


On the multihome: the IPs resolve to different hosts and FQDNs. =20

Both servers have 2 NICs:

10.X.X.X/255.255.255.0=20
66.X.X.X/255.255.255.224

Webmin broadcasts correctly to the expected two network addresses:

10.X.X.255=20
66.X.X.223

But it also adds in a broadcast to all networks, and a broadcast to the
10 net as a class A:

255.255.255.255
10.255.255.255

Ethereal shows the 10.255.255.255 ignored (not on my network), the
10.x.x.255 received by the first NIC, and the 66.X.X.223 and
255.255.255.255 received by the second NIC.

So - it should receive 3 responses.  Somehow, it is already de-duping
them and concluding there are 2 new servers to add.  I'm OK with that -
except it uses the same host name and port for both.  So, there is
nothing I can see from the edit screen that indicates why it thinks they
are different. =20

Furthermore, if I broadcast again, I would expect it to either re-add
both, or add nothing.  Instead, it adds just one of them!  Every new
broadcast adds one more server with the same name, same config settings.


Hope that helps and wasn't too much information.



Thanks,

Neal

Re: [webmin-l] Ladp users

[Jamie C. <jca...@we...>]

Hi Mohammed,

Are you seeing any error messages in /var/log/secure or /var/log/authlog when users try to login? Also, do you have the Authen::PAM Perl module installed?

 - Jamie

-----Original Message-----

From:  "Khan, Mohammed [SMO]" <MK...@fr...>
Subj:  [webmin-l] Ladp users
Date:  Thu 16 Feb 2006 12:48 pm
Size:  928 bytes
To:  <web...@li...>

Hello, 
I am having problem with ldap user login to usermin.  Local users are able to login fine.  Just the ldap user I am having problem.  Please help.

Thanks
Mohammed

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

[webmin-l] Ladp users

[Khan, M. [SMO] <MK...@fr...>]

Hello,=20
I am having problem with ldap user login to usermin.  Local users are able =
to login fine.  Just the ldap user I am having problem.  Please help.

Thanks
Mohammed

Notice:  All email and instant messages (including attachments) sent to
or from Franklin Templeton Investments (FTI) personnel may be retained,
monitored and/or reviewed by FTI and its agents, or authorized
law enforcement personnel, without further notice or consent.

[webmin-l] Existing database shows as "None created" even though it exists

[<pr...@pr...>]

From: Prodos

Good morning.

I mentioned a few weeks ago that my server had crashed
following a DoS (Denial of Service) attack.

After a Linux expert got my server running again
I noticed that all my domains (virtual servers) were showing that
they only had 5,000 KB of space assigned to them.

Another problem I've found is that when I go to ...

Servers >> Virtualmin Virtual Servers >> [click on name of virtual
server] >> Edit Server

... so now I'm on the "Edit Server" page ... it says:

"Databases: None created"

Yet there IS a database in the server I'm looking at.

Could someone suggest what I should do about this?

Do I have to run some sort of function in order for the 
database to show up? Does the database have to 
somehow be re-installed? 

A coder has installed a system on one of my domains
and it's not behaving properly. So I'm wondering whether
the fact that the database is not showing as existing
on the "Edit Server" page is related to the problems we're having.

When I look for the database for this domain it DOES show
up on the list of MySQL servers. But, as I mentioned,
it isn't noted on the "Edit Server" page.

I hope I've described the problem reasonably clearly.

Your suggestions and tips would be greatly appreciated.

Many thanks.

Best Wishes,

PRODOS

http://prodos.thinkertothinker.com

"Boring updates on exciting projects."

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Jamie C. <jca...@we...>]

On 16/Feb/2006 10:59 Neal Morgan wrote ..
> Jamie:
> 
> I was testing the UDP broadcast on two servers on the same network
> segment - there are neither switches nor firewalls between.  Also, when
> I put the UDP port back to 10000 on both they find each other without
> problem.

Have you tried using tcpdump to check the traffic between the servers?
Perhaps it is being sent to the wrong port?

> On the multihomed/duplicates issue, Webmin finds the server twice, with
> the same name.  When you edit the entries they are entirely the same.
> It appears to be finding the webmin name versus the host name; not an
> FQDN - so it doesn't look like there's a reverse lookup involved.  
> 
> Again, not a big issue, just thought you'd want to know in case you find
> yourself looking for something to do!  (I doubt that happens often).

Do all the IPs of this multihome server reverse-resolve to the same hostname?
That is the only way Webmin can get the hostnames ..

 - Jamie

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Neal M. <Ne...@mo...>]

Jamie:

I was testing the UDP broadcast on two servers on the same network
segment - there are neither switches nor firewalls between.  Also, when
I put the UDP port back to 10000 on both they find each other without
problem.

On the multihomed/duplicates issue, Webmin finds the server twice, with
the same name.  When you edit the entries they are entirely the same.
It appears to be finding the webmin name versus the host name; not an
FQDN - so it doesn't look like there's a reverse lookup involved. =20

Again, not a big issue, just thought you'd want to know in case you find
yourself looking for something to do!  (I doubt that happens often).


All the best,

Neal





-----Original Message-----
From: web...@li...
[mailto:web...@li...] On Behalf Of Jamie
Cameron
Sent: Wednesday, February 15, 2006 3:05 PM
To: web...@li...
Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan

<snip>

Are you sure it isn't being blocked by a firewall? And that both the
sending a receiving systems are using the same port?

<snip>

That is a tough one to solve, as presumably the different IPs won't
resolve
to the same hostname..

RE: [webmin-l] Change Password error

[Dave I. <dav...@en...>]

That works.  Thanks!

Dave I

-----Original Message-----
From: web...@li...
[mailto:web...@li...] On Behalf Of Jamie
Cameron
Sent: Wednesday, February 15, 2006 6:09 PM
To: web...@li...
Subject: RE: [webmin-l] Change Password error


Hi Dave,
Basically, all I did was change the function unix_crypt in the file
web-lib-funcs.pl to:

# unix_crypt(password, salt)
# Performs Unix encryption on a password, using crypt() or Crypt::UnixCrypt
sub unix_crypt { local ($pass, $salt) = @_;
return "" if (!$salt);   # same as real crypt
local $rv = eval "crypt(\$pass, \$salt)";
local $err = $@;
return $rv if ($rv && !$@);
eval "use Crypt::UnixCrypt";
if (!$@) {
        return Crypt::UnixCrypt::crypt($pass, $salt);
        }
else {
        &error("Failed to encrypt password : $err");
        }
}

You could do the same thing by directly editing that file in your copy of
Webmin.

 - Jamie

On 16/Feb/2006 00:54 Dave Isaacs wrote ..
> Is it possible to give me details (or at least hints) of what need to 
> be fixed?  I have to deliver a production system by the end of the 
> month and I have no working change password feature.
>  
> Thanks
>  
> Dave I
> 
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...] On Behalf Of Jamie 
> Cameron
> Sent: Tuesday, February 14, 2006 6:39 PM
> To: web...@li...
> Subject: RE: [webmin-l] Change Password error
> 
> 
> There is another way it could happen - but I will deal with that in 
> Webmin 1.270.
> 
>  - Jamie
> 
> On 15/Feb/2006 03:15 Dave Isaacs wrote ..
> 
> In my case the password is NOT blank (I am trying to change the 
> password of the user I am currently logged in as).  Could there be 
> another problem?
> 
> Thanks
> 
> Dave I
> 
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...] On Behalf Of Jamie
> Cameron
> 
> Sent: Tuesday, February 14, 2006 3:14 AM
> To: web...@li... 
> Subject: RE: [webmin-l] Change Password error 
> 
> 
> Hi Dave,
> Thanks, I see the cause of this problem now ... it can happen if changing
> the password of a user whose password is currently blank. The next release
> of Webmin will fix it though.
> 
>  - Jamie
> 
> -----Original Message-----
> 
> From:  Dave Isaacs <dav...@en...>
> Subj:  RE: [webmin-l] Change Password error 
> Date:  Tue 14 Feb 2006 1:08 am 
> Size:  4K 
> To:  "'web...@li...'"
> <web...@li...> 
> 
>      RE: [webmin-l] Change Password error 
>     I am using the standard Change Password (passwd) module that is 
> packaged with Webmin 1.260.
>   Thanks 
>   Dave I 
>   -----Original Message-----
> From: web...@li...
> [mailto:web...@li...] On Behalf Of Jamie
> Cameron
> 
>   Sent: Saturday, February 11, 2006 4:56 AM
> To: web...@li... 
> Subject: Re: [webmin-l] Change Password error 
>   
>   Hi Dave,
> That looks like a bug in Webmin. 
> Which module are you doing the password change in though? It seems that
> the
> caller of unix_crypt is passing in the wrong parameters.
> 
>   - Jamie 
>   -----Original Message----- 
>   From: Dave Isaacs dav...@en...
> Subj: [webmin-l] Change Password error 
> Date: Sat 11 Feb 2006 5:01 am 
> Size: 2K 
> To: 'web...@li...'
> web...@li... 
>    Message 
>  Previously, whenI was using the Webmin 1.230 (on RedHat EL3)passwd
module,
> there were no problems. 
>   
> Now, using the Webmin 1.250 version, I get the error Failed to change 
> password : Failed to encrypt password :.
>   
> Looking at web-funcs-lib.pl, at the unix_crypt() subroutine, I can see 
> that if the call to crypt() fails, then Crypt::UnixCrypt is used 
> instead. Indeed, in my case the
> 
> 
> $rv = eval crypt(\$pass, \$salt);
>   
> call is resulting in $rv being undef. The fallback to Crypt::UnixCrypt 
> does not work because I do not have that perl module installed.
> 
> 
> Now my question is: why is the call to crypt() failing? It was not 
> failing previously. Doing a little digging, I discovered the when the 
> failure occurs, $pass is equal to the old password and $salt is equal 
> to undef. Without salt, crypt() appears to return nothing. Why is the 
> salt undef?
> 
> 
> Thanks
>   
> Dave Isaacs
>   
>   
>   
>   -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems? Stop! Download the new AJAX search engine that makes
searching
> your log files as easy as surfing the web. DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=lnkkid=103432bid=230486dat=121642
> <http://sel.as-us.falkag.net/sel?cmd=lnkkid=103432bid=230486dat=121642>
> 
>   -
> Forwarded by the Webmin mailing list at
web...@li...
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
> <http://lists.sourceforge.net/lists/listinfo/webadmin-list>  
>   
> 
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=lnk
> <http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642>
> &kid=103432&bid=230486&dat=121642
> 
> -
> Forwarded by the Webmin mailing list at
web...@li...
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
> <http://lists.sourceforge.net/lists/listinfo/webadmin-list>  


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

RE: [webmin-l] Change Password error

[Jamie C. <jca...@we...>]

Hi Dave,
Basically, all I did was change the function unix_crypt in the file web-lib-funcs.pl to:

# unix_crypt(password, salt)
# Performs Unix encryption on a password, using crypt() or Crypt::UnixCrypt
sub unix_crypt
{
local ($pass, $salt) = @_;
return "" if (!$salt);   # same as real crypt
local $rv = eval "crypt(\$pass, \$salt)";
local $err = $@;
return $rv if ($rv && !$@);
eval "use Crypt::UnixCrypt";
if (!$@) {
        return Crypt::UnixCrypt::crypt($pass, $salt);
        }
else {
        &error("Failed to encrypt password : $err");
        }
}

You could do the same thing by directly editing that file in your copy of Webmin.

 - Jamie

On 16/Feb/2006 00:54 Dave Isaacs wrote ..
> Is it possible to give me details (or at least hints) of what need to be
> fixed?  I have to deliver a production system by the end of the month and
> I
> have no working change password feature.
>  
> Thanks
>  
> Dave I
> 
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...] On Behalf Of Jamie
> Cameron
> Sent: Tuesday, February 14, 2006 6:39 PM
> To: web...@li...
> Subject: RE: [webmin-l] Change Password error
> 
> 
> There is another way it could happen - but I will deal with that in Webmin
> 1.270.
> 
>  - Jamie
> 
> On 15/Feb/2006 03:15 Dave Isaacs wrote .. 
> 
> In my case the password is NOT blank (I am trying to change the password
> of
> the user I am currently logged in as).  Could there be another problem?
> 
> Thanks 
> 
> Dave I 
> 
> -----Original Message----- 
> From: web...@li...
> [mailto:web...@li...] On Behalf Of Jamie
> Cameron
> 
> Sent: Tuesday, February 14, 2006 3:14 AM 
> To: web...@li... 
> Subject: RE: [webmin-l] Change Password error 
> 
> 
> Hi Dave, 
> Thanks, I see the cause of this problem now ... it can happen if changing
> the password of a user whose password is currently blank. The next release
> of Webmin will fix it though.
> 
>  - Jamie 
> 
> -----Original Message----- 
> 
> From:  Dave Isaacs <dav...@en...> 
> Subj:  RE: [webmin-l] Change Password error 
> Date:  Tue 14 Feb 2006 1:08 am 
> Size:  4K 
> To:  "'web...@li...'"
> <web...@li...> 
> 
>      RE: [webmin-l] Change Password error 
>     I am using the standard Change Password (passwd) module that is packaged
> with Webmin 1.260. 
>   Thanks 
>   Dave I 
>   -----Original Message----- 
> From: web...@li...
> [mailto:web...@li...] On Behalf Of Jamie
> Cameron
> 
>   Sent: Saturday, February 11, 2006 4:56 AM 
> To: web...@li... 
> Subject: Re: [webmin-l] Change Password error 
>   
>   Hi Dave, 
> That looks like a bug in Webmin. 
> Which module are you doing the password change in though? It seems that
> the
> caller of unix_crypt is passing in the wrong parameters.
> 
>   - Jamie 
>   -----Original Message----- 
>   From: Dave Isaacs dav...@en... 
> Subj: [webmin-l] Change Password error 
> Date: Sat 11 Feb 2006 5:01 am 
> Size: 2K 
> To: 'web...@li...'
> web...@li... 
>    Message 
>  Previously, whenI was using the Webmin 1.230 (on RedHat EL3)passwd module,
> there were no problems. 
>   
> Now, using the Webmin 1.250 version, I get the error Failed to change
> password : Failed to encrypt password :. 
>   
> Looking at web-funcs-lib.pl, at the unix_crypt() subroutine, I can see
> that
> if the call to crypt() fails, then Crypt::UnixCrypt is used instead. Indeed,
> in my case the 
> 
> 
> $rv = eval crypt(\$pass, \$salt); 
>   
> call is resulting in $rv being undef. The fallback to Crypt::UnixCrypt
> does
> not work because I do not have that perl module installed.
> 
> 
> Now my question is: why is the call to crypt() failing? It was not failing
> previously. Doing a little digging, I discovered the when the failure
> occurs, $pass is equal to the old password and $salt is equal to undef.
> Without salt, crypt() appears to return nothing. Why is the salt undef?
> 
> 
> Thanks 
>   
> Dave Isaacs 
>   
>   
>   
>   ------------------------------------------------------- 
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems? Stop! Download the new AJAX search engine that makes searching
> your log files as easy as surfing the web. DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=lnkkid=103432bid=230486dat=121642
> <http://sel.as-us.falkag.net/sel?cmd=lnkkid=103432bid=230486dat=121642>
> 
>   - 
> Forwarded by the Webmin mailing list at web...@li...
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
> <http://lists.sourceforge.net/lists/listinfo/webadmin-list>  
>   
> 
> 
> 
> ------------------------------------------------------- 
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd=lnk
> <http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642>
> &kid=103432&bid=230486&dat=121642
> 
> - 
> Forwarded by the Webmin mailing list at web...@li...
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list
> <http://lists.sourceforge.net/lists/listinfo/webadmin-list>  

RE: [webmin-l] Webmin Servers, Broadcast/scan

[Jamie C. <jca...@we...>]

On 16/Feb/2006 04:22 Neal Morgan wrote ..
> Jamie:
> 
> Thanks for the clarification.  I took the time to try this out and I
> find that both broadcast and scan only want to work if the UDP port on
> the servers is set to 10000.  My non standard port won't work there.  I
> see the UDP listener in place on the desired port using netstat, but it
> still doesn't seem to work.

Are you sure it isn't being blocked by a firewall? And that both the
sending a receiving systems are using the same port?

> Another minor issue: if your servers are multihomed and listen on all
> interfaces, the broadcast option finds them on all interfaces and adds
> multiple instances of the same machine.  I understand this is probably
> because they appear to be different based on IP - but they do report the
> same server name.  I wonder if it's worth de-duping on name, or at least
> prompting for confirmation before adding when more than one with the
> same name was found.

That is a tough one to solve, as presumably the different IPs won't resolve
to the same hostname..

 - Jamie

> Neither of these are show-stoppers, but maybe you'd want to add them to
> your list of future fixes...
> 
> As always, thanks for your support and the great software!
> 
> 
> 
> Regards,
> 
> Neal Morgan 
> 
> 
> -----Original Message-----
> From: web...@li...
> [mailto:web...@li...] On Behalf Of Jamie
> Cameron
> Sent: Tuesday, February 14, 2006 3:04 PM
> To: web...@li...
> Subject: Re: [webmin-l] Webmin Servers, Broadcast/scan
> 
> 
> <snip>
> 
> Hi Neal,
> Webmin actually listens on two ports, which by default are port 10000
> TCP
> and 10000 UDP. The first is for the actual HTTP connections, while the
> second
> is for accepting broadcasts from other Webmin servers. They are actually
> configured
> separately on the 'Ports and Addresses' page of the 'Webmin
> Configuration' module.
> 
> When sending a broadcast, Webmin will send to the same port number that
> it listens
> on itself.
> 
>  - Jamie
> 
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://sel.as-us.falkag.net/sel?cmd-
> Forwarded by the Webmin mailing list at web...@li...
> To remove yourself from this list, go to
> http://lists.sourceforge.net/lists/listinfo/webadmin-list

Re: [webmin-l] Bandwidth Monitor

[Jamie C. <jca...@we...>]

Hi Ben,
The file they get added to is /etc/shorewall/start . However, instead of manually removing the rules you can use the Turn Off Monitoring button in the Bandwidth module.

 - Jamie

-----Original Message-----

From:  Ben Whyte <be...@wh...>
Subj:  [webmin-l] Bandwidth Monitor
Date:  Thu 16 Feb 2006 8:27 am
Size:  761 bytes
To:  web...@li...

Hi

I have enabled the bandwidth monitor and its filling up my syslog.

I want to turn it off but cant find where its putting the iptables rules 
to prevent them being readded.

I use shorewall as my firewall.

Can someone help ?

Ben


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list

[webmin-l] Bandwidth Monitor

[Ben W. <be...@wh...>]

Hi

I have enabled the bandwidth monitor and its filling up my syslog.

I want to turn it off but cant find where its putting the iptables rules 
to prevent them being readded.

I use shorewall as my firewall.

Can someone help ?

Ben