Package: libpam-modules Version: 0.79-5+etch1 Debian-Version: Etch(4.0) Libc-Version: 2.3.6.ds1-13etch9
Hi, I use pam_succeed_if to ensure that only certain users can use su: Here's my /etc/pam.d/su: ##### /etc/pam.d/su #### auth sufficient pam_rootok.so auth required pam_succeed_if.so use_uid user = u1 auth required pam_wheel.so root_only session required pam_env.so readenv=1 session required pam_env.so readenv=1 envfile=/etc/default/locale session optional pam_mail.so nopen @include common-auth @include common-account @include common-session ##### /etc/pam.d/su #### What irritates me are the following entries in /var/log/auth: # if user is OK: pam_succeed_if:requirement "user = u1" was met by user "/bin/bash" # Otherwise: pam_succeed_if: requirement "user = u1" not met by user "/bin/bash" The module seems to work correctly, but the logentries are obviously wrong. There's no user named "/bin/bash" :-) It's u1's shell. Any idea, what is wrong here. Kind regards, Harald Hellmuth hostserver GmbH - h...@hostserver.de -- __________________________________ hostserver GmbH Biegenstra_e 20 D-35037 Marburg Tel. 06421 175 175 0 Fax. 06421 175 175 9 http://www.hostserver.de -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org