Re: Setting Pam/Pap-secrets for ADSL Username/Password
If you used pppoeconf to set up ADSL, the username/password should be in /etc/ppp/pap-secrets. -- Guo Yixuan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
PPP und CAPI unter Sarge: pap-secrets-Problem
Hi zusammen, ich bin dabei, einen Sarge-Rechner mit 'ner Fritzcard zum Faxserver zu machen, der aber nebenbei auch noch die Einwahl ins Netz erlauben soll (und Firewalling etc.). Nun ergab sich das interessante PRoblem, daß zwar die CAPI ordnungsgemäß geladen wird und z.B. auch Faxen kann, aber die Einwahl ins Netz funzt nicht so recht :D An Paketen sind u.a. installiert: libcapi20, isdnactivecards, pppdcapiplugin, capiutils (und noch einige mehr, die Kiste steht 250km entfernt und ich komme gerade nicht ran). Ich habe gemäß man pppd und einiger Literatur im Netz ein provider-Datei in /etc/ppp/peers angelegt und sinnig gefüllt, und natürlich das Paßwort inkl. des Namens aus /etc/ppp/peers/provider in der /etc/ppp/pap-secrets bzw. chap-secrets eingetragen. Laut syslog gehen aber alle Verbindungsversuche schief - genaueres Suchen und Manipulieren an der provider-Datei ergab, daß das Paßwort aus der pap-/chap-secrets nicht gesendet wird. Erst wenn ich das Paßwort direkt in der Provider-Datei eintrage, klappt die Einwahl. Dabei ist es Wurst, ob via PAP oder CHAP authentifiziert wird - die Telekomiker akzeptieren beides. Allerdings ist das aus Sicherheitsgründen nicht so ganz das, was ich mir vorstelle. Hat irgendjemand eine Idee, was das Problem sein könnte? Ich wär für jeden Tip dankbar :D Friedemann
/etc/ppp/pap-secrets default
If I'm not confused, these two lines are in the default Woody pap-secrets file. # Evey regular user can use PPP ... * (none)* Can anyone explain why the server entry is (none) rather than *? Thanks, Peter E. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: pppd not able to authenticate using pap-secrets
On Sat, Apr 10, 2004 at 11:19:28PM +0530, Soumyadip Modak wrote: I'm trying to use kppp to dial in to my isp. Problem is, even though the username and password are stored in pap-secrets file, pppd is unable to use it. /var/log/syslog says: Apr 10 07:29:04 modak pppd[967]: The remote system is required to authenticate itself Your setup is requiring the remote system to authenticate itself to you. This is probably not what you want. Most of the setups I am familiar with, the ISP requires you to auth to them, but they don't auth to you. This is what you are asking it to do. It has been a while since I used ppp, but re-read the documentation---you are looking for the auth/noauth option to specify on your connection to your ISP. Last time I used ppp, this would be in a file in (e.g.) /etc/ppp/peers/provider-name HTH Apr 10 07:29:04 modak pppd[967]: but I couldn't find any suitable secret (password) for it to use to do so. Apr 10 07:29:04 modak pppd[967]: (None of the available passwords would let it use an IP address.) I tried man pppd, but i lost my way inside. Can anyone please give me any pointers on how to get pppd to authenticate itself. /etc/ppp/pap-secrets is owner+group readable and writable. Owner and group both root, and I'm running kppp as root. Thanks -- Soumyadip Modak [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- Chris Harris [EMAIL PROTECTED] --- GNU/Linux --- The best things in life are free. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
pppd not able to authenticate using pap-secrets
I'm trying to use kppp to dial in to my isp. Problem is, even though the username and password are stored in pap-secrets file, pppd is unable to use it. /var/log/syslog says: Apr 10 07:29:04 modak pppd[967]: The remote system is required to authenticate itself Apr 10 07:29:04 modak pppd[967]: but I couldn't find any suitable secret (password) for it to use to do so. Apr 10 07:29:04 modak pppd[967]: (None of the available passwords would let it use an IP address.) I tried man pppd, but i lost my way inside. Can anyone please give me any pointers on how to get pppd to authenticate itself. /etc/ppp/pap-secrets is owner+group readable and writable. Owner and group both root, and I'm running kppp as root. Thanks -- Soumyadip Modak [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Using email addy in /etc/ppp/pap-secrets (pppd + pap)
Hello all. I've run into a bit of a vexing problem. My ISP has opened up access outside of its normal coverage area into an are I travel frequently. However, they told me that instead of my normal userid, I'm to login to the remote system with my email address as my login. The trouble is that pppd seems to barf on it. I've tried the login using my normal ID into the remote site and pap authentication is negotiated, but fails due to the incorrect userid. When I put the email address into the /etc/ppp/pap-secrets file, pppd refuses to negotiate pap authentication, sending naks to the host after each pap authentication request. I'm suspecting the @ in the email address as that tells pppd to look for passwords in the filename following @. I read the FM and all I found were the normal escapes, \ and quoting the string with . All have failed. Ideas? - Nate -- Wireless | Amateur Radio Station N0NB | None can love freedom Internet | [EMAIL PROTECTED] | heartily, but good Location | Wichita, Kansas USA EM17hs | men; the rest love not Wichita area exams; ham radio; Linux info @ | freedom, but license. http://www.qsl.net/n0nb/ | -- John Milton
strange thing in pap-secrets
Hi, On one of my servers, I had to put this in pap-secrets to allow dialins: # Every regular user can use PPP and has to use passwords from /etc/passwd * silly * hamish silly 203.14.18.2 charles silly 203.14.18.2 without the particular user/IP lines, it wouldn't connet; unauthorized remote IP address. The IPs are specified in the options.ttyS* files. This server is running 2.3.11-1.3; I have another server running 2.3.11-1.1 which is working just fine. Any thoughts? Hamish -- Hamish Moffatt VK3SB [EMAIL PROTECTED] [EMAIL PROTECTED]
Re: strange thing in pap-secrets
On Sun, Mar 19, 2000 at 04:54:14PM +1100, Hamish Moffatt wrote: On one of my servers, I had to put this in pap-secrets to allow dialins: # Every regular user can use PPP and has to use passwords from /etc/passwd * silly * hamishsilly 203.14.18.2 charles silly 203.14.18.2 without the particular user/IP lines, it wouldn't connet; unauthorized remote IP address. The IPs are specified in the options.ttyS* files. Let me get this straight: you used this form: usernamehostname * And the client specified its own IP address, but it didn't work? Try using ipcp-accept-local or ipcp-accept-remote options, and read /usr/doc/ppp/README.STATIC-IP... I guess that could work. I remember seeing a very similar problem once... I also remember fixing it by typing the password in the pap-secrets :) This server is running 2.3.11-1.3; I have another server running 2.3.11-1.1 which is working just fine. No changes to pppd itself have been made between those two versions, just packaging changes. -- enJoy -*/\*- don't even try to pronounce my first name
pap-secrets
Hi All, Playing with ppp I have found that It is impossible to connect from w95 box into linux if there exist /etc/pap/pap-secrets file. Everything is ok when I delete this file. It looks like w95 can not use PAP. Is it true? Or there are possible errors in /etc/ppp/options? As I understand the main propose of pap-secrets is to restrict some users to login via ppp. How can I impose these restrictions without secrets?? Any tips? Below some info which might help to understand what is going on. Thanks, Eugene Here is fragment from ppp.log: Connect: ppp0 -- /dev/ttyS1 sent [LCP ConfReq id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [LCP ConfAck id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [LCP ConfReq id=0x3 asyncmap 0xa magic 0x1a4e86 pcomp accomp ] sent [LCP ConfRej id=0x3 0d 03 06] sent [LCP ConfReq id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [LCP ConfReq id=0x4 asyncmap 0xa magic 0x1a4e86 pcomp accomp] sent [LCP ConfAck id=0x4 asyncmap 0xa magic 0x1a4e86 pcomp accomp] rcvd [LCP ConfAck id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [PAP AuthReq id=0x1 user=sevinian password=mypasswd] PAP authentication failure for sevinian sent [PAP AuthNak id=0x1msg=Login incorrect] sent [LCP TermReq id=0x2] rcvd [LCP TermAck id=0x2] Connection terminated. /etc/ppp/options: dns-addr 194.x.x.x asyncmap 0 auth crtscts lock modem mru 542 +pap debug domain yerphi.am remotename xyz proxyarp login lcp-echo-interval 60 lcp-echo-failure 4 pap-restart 3 pap-max-authreq 3 /etc/ppp/pap-secrets: * xyz Eugene Sevinian CRD, YerPhI, 375036, Armenia URL: http://crdlx5.yerphi.am/ Phone: 374-2-344873
Re: pap-secrets
Hello: In my pap-secrets I have the following # INBOUND connections # Every regular user can use PPP and has to use passwords from /etc/passwd #* moose * * * * Peter -Original Message- From: Eugene Sevinian [EMAIL PROTECTED] To: debian-user@lists.debian.org debian-user@lists.debian.org Date: Tuesday, October 06, 1998 2:08 PM Subject: pap-secrets Hi All, Playing with ppp I have found that It is impossible to connect from w95 box into linux if there exist /etc/pap/pap-secrets file. Everything is ok when I delete this file. It looks like w95 can not use PAP. Is it true? Or there are possible errors in /etc/ppp/options? As I understand the main propose of pap-secrets is to restrict some users to login via ppp. How can I impose these restrictions without secrets?? Any tips? Below some info which might help to understand what is going on. Thanks, Eugene Here is fragment from ppp.log: Connect: ppp0 -- /dev/ttyS1 sent [LCP ConfReq id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [LCP ConfAck id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [LCP ConfReq id=0x3 asyncmap 0xa magic 0x1a4e86 pcomp accomp ] sent [LCP ConfRej id=0x3 0d 03 06] sent [LCP ConfReq id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [LCP ConfReq id=0x4 asyncmap 0xa magic 0x1a4e86 pcomp accomp] sent [LCP ConfAck id=0x4 asyncmap 0xa magic 0x1a4e86 pcomp accomp] rcvd [LCP ConfAck id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [PAP AuthReq id=0x1 user=sevinian password=mypasswd] PAP authentication failure for sevinian sent [PAP AuthNak id=0x1msg=Login incorrect] sent [LCP TermReq id=0x2] rcvd [LCP TermAck id=0x2] Connection terminated. /etc/ppp/options: dns-addr 194.x.x.x asyncmap 0 auth crtscts lock modem mru 542 +pap debug domain yerphi.am remotename xyz proxyarp login lcp-echo-interval 60 lcp-echo-failure 4 pap-restart 3 pap-max-authreq 3 /etc/ppp/pap-secrets: * xyz Eugene Sevinian CRD, YerPhI, 375036, Armenia URL: http://crdlx5.yerphi.am/ Phone: 374-2-344873 -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
Re: pap-secrets
The new ppp requires that you have a fourth field for acceptable IP addresses. Also, you *must* have an entry in pap-secrets (a wildcard entry at least) even if you're authenticating against your regular password database (as your options shows you are). Just put in '*' as the fourth field of the appropriate entry in pap-secrets and you should be good. Eugene Sevinian wrote: Hi All, Playing with ppp I have found that It is impossible to connect from w95 box into linux if there exist /etc/pap/pap-secrets file. Everything is ok when I delete this file. It looks like w95 can not use PAP. Is it true? Or there are possible errors in /etc/ppp/options? As I understand the main propose of pap-secrets is to restrict some users to login via ppp. How can I impose these restrictions without secrets?? Any tips? Below some info which might help to understand what is going on. Thanks, Eugene Here is fragment from ppp.log: Connect: ppp0 -- /dev/ttyS1 sent [LCP ConfReq id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [LCP ConfAck id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [LCP ConfReq id=0x3 asyncmap 0xa magic 0x1a4e86 pcomp accomp ] sent [LCP ConfRej id=0x3 0d 03 06] sent [LCP ConfReq id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [LCP ConfReq id=0x4 asyncmap 0xa magic 0x1a4e86 pcomp accomp] sent [LCP ConfAck id=0x4 asyncmap 0xa magic 0x1a4e86 pcomp accomp] rcvd [LCP ConfAck id=0x1 mru 542 asyncmap 0x0 auth pap magic 0xe5ad3246] rcvd [PAP AuthReq id=0x1 user=sevinian password=mypasswd] PAP authentication failure for sevinian sent [PAP AuthNak id=0x1msg=Login incorrect] sent [LCP TermReq id=0x2] rcvd [LCP TermAck id=0x2] Connection terminated. /etc/ppp/options: dns-addr 194.x.x.x asyncmap 0 auth crtscts lock modem mru 542 +pap debug domain yerphi.am remotename xyz proxyarp login lcp-echo-interval 60 lcp-echo-failure 4 pap-restart 3 pap-max-authreq 3 /etc/ppp/pap-secrets: * xyz Eugene Sevinian CRD, YerPhI, 375036, Armenia URL: http://crdlx5.yerphi.am/ Phone: 374-2-344873 -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null -- Jens B. Jorgensen [EMAIL PROTECTED]
Re: pap-secrets
Hi again, I tried to add an '*' as a fourth field, but results remains thee same. I got bla-bla check your password. However, thanks for your advice. Is there any other ideas? Eugene. On Tue, 6 Oct 1998, Jens B. Jorgensen wrote: The new ppp requires that you have a fourth field for acceptable IP addresses. Also, you *must* have an entry in pap-secrets (a wildcard entry at least) even if you're authenticating against your regular password database (as your options shows you are). Just put in '*' as the fourth field of the appropriate entry in pap-secrets and you should be good. Eugene Sevinian wrote: Hi All, Playing with ppp I have found that It is impossible to connect from w95 box into linux if there exist /etc/pap/pap-secrets file. Everything is ok when I delete this file. It looks like w95 can not use PAP. Is it true? Or there are possible errors in /etc/ppp/options? As I understand the main propose of pap-secrets is to restrict some users to login via ppp. How can I impose these restrictions without secrets??