Re: Some RedHat advice?
On Friday 08 July 2005 12:35 am, Ken D'Ambrosio wrote: > It seems likely to me that you need something in /etc/pam.d/; below is a > handy link (it even mentions PAM, FTP *and* Red Hat, all in the same > post!). The general gist, however, is that many services require an > /etc/pam.d/ config file before they'll work with PAM; you may be able to > look at your functional Debian /etc/pam.d/*ftp* file, and just pull it > over. Maybe. > > http://www.castaglia.org/proftpd/doc/README.PAM.html Red Hat comes with a PAM configuration already for vsftpd, which is working fine. It includes a system-auth file, which includes the generic authentication modules shared by all authentication scripts. That generic include file is where I've added all the pam_winbind module information (auth and account) for the active directory authentication, which is working fine. That file also includes the session module for pam_mkhomedir, which is apparently being ignored. The settings are all the same as from the Debian test setup. And again, pam_mkhomedir is working fine for other methods of login, such as SSH. I have heard that this problem can occur with SSH also, when UsePrivilegeSeparation is set to Yes, since the ssh daemon drops privileges before the pam_mkhomedir module is called, though that doesn't make a whole lot of sense to me because I was under the impression that PAM was intended to be run as pretty much any user, so that any process, regardless of user, can do authentication. I would have assumed that setting /home to 777 for permissions would have dismissed this as the problem though. Anyway, I will try more troubleshooting today. I think I'll try setting the PrivilegeSeparation to Yes and see if I can duplicate the problem. When I get to work, if anyone wants to see the pam configs, I will post them. I think this has to do with vsftpd though, so I was hoping that someone had some experience with using it beyond the default configuration. Or perhaps someone with Red Hat experience can tell me what you do when the lack of selection in Red Hat's packages doesn't have the "right" package for the job? Can you safely go outside the distro or is that just asking for trouble? Any other ideas? -N ___ gnhlug-discuss mailing list gnhlug-discuss@mail.gnhlug.org http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
Re: Some RedHat advice?
I've found the solution on my own - thanks for the help from those who offered. For the curious, essentially, vsftpd has an option called "session_support" and doesn't process PAM session modules unless this is enabled. In every documentation and FAQ I've found, it's enabled by default and it wasn't disabled here, but I guess it's plausible that the Red Hat distribution compiles that with the opposite default or something. I set it to YES and it's just working now. ___ gnhlug-discuss mailing list gnhlug-discuss@mail.gnhlug.org http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
Re: Speaking of OSS in schools
On Jul 7, 2005, at 6:51 PM, Star wrote: If anyone is interested in volunteering for this project with me, let me know. I can provide space, etc to get a site started, though b/w is a home connection (768k up) so it couldn't live there past concept. Star: Great to hear you are interested in volunteering! This isn't one of my projects, but I know there are several members of the group involved in various efforts around the state, and I encourage you to get in touch with them. I know that several of the local school systems are using FOSS. A quick Google of "OSS NH Schools" will show you there are already a number of efforts. The McAuliffe Conference[1] has been teaching Open Source for several years. Matt Oquist and David Trask also recently held a conference[2] in Maine for teachers - didn't Bill Sconce do a session there, too? NHSTE [3] is focused on technology in schools and have some active mailing lists, I think. There are also some entries on the GNHLUG Twiki - a good starting point might be: http:// wiki.gnhlug.org/twiki2/bin/view/Organizational/EducatorLinuxProject [1] http://www.nhcmtc.org/ [2] http://www.trasksinc.com/NELS/index.html [3] http://www.nhste.org/ and http://www.nhste.org/pd/Linux_Workshops Good luck and keep the group posted on your progress! Ted Roche Ted Roche & Associates, LLC http://www.tedroche.com ___ gnhlug-discuss mailing list gnhlug-discuss@mail.gnhlug.org http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
access beyond end of device?
I just noticed a somewhat disturbing entry in my logs Jul 8 15:35:23 hostname kernel: attempt to access beyond end of device Jul 8 15:35:23 hostname kernel: hdb1: rw=0, want=7144059272, limit=40017852 Jul 8 15:35:23 hostname kernel: attempt to access beyond end of device Jul 8 15:35:23 hostname kernel: hdb1: rw=0, want=7144059272, limit=40017852 So I checked the disk: $ ls -la /dev/hdb1 lr-xr-xr-x 1 root root 33 Apr 26 16:20 /dev/hdb1 -> ide/host0/bus0/target1/lun0/part1 $ df -h /dev/ide/host0/bus0/target1/lun0/part1 FilesystemSize Used Avail Use% Mounted on /dev/ide/host0/bus0/target1/lun0/part1 19G 12G 6.7G 63% /home WTF? Running a search for this was not all that helphul. It seems the consensus is that the device is one size and Linux seems to be configured for a different size. Does that sound right? ___ gnhlug-discuss mailing list gnhlug-discuss@mail.gnhlug.org http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
