Package: libpam-modules Version: 0.76-22 Severity: normal
Having this in common-auth: ---------------------------------------------- auth [success=1 default=ignore] pam_unix.so auth required pam_ldap.so use_first_pass auth required pam_permit.so ---------------------------------------------- and nothing else yields this in syslog: ---------------------------------------------- Nov 14 10:00:55 less unix_chkpwd[5387]: check pass; user unknown Nov 14 10:00:55 less xscreensaver: (pam_unix) authentication failure; \ logname= uid=1018 euid=1018 tty=:0.0 ruser= rhost= user=bahner ---------------------------------------------- The first of the two entries is logged as auth.error, which is wrong in the context. Even without default=ignore this probably shouldn't warrant more than auth.warn. There are no common users in /etc/[passwd|shadow], and there shouldn't be, but in case of a missing LDAP-server root should gain access without having to wait for a network timeout. Kind regards, Lars Bahner PS. xscreensaver is only an example. This error is true for all applications using common-auth. -- System Information: Debian Release: 3.1 Architecture: i386 (i686) Kernel: Linux 2.6.12+vserver Locale: LANG=no_NO.UTF-8, LC_CTYPE=no_NO.UTF-8 (charmap=UTF-8) Versions of packages libpam-modules depends on: ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries an ii libcap1 1:1.10-14 support for getting/setting POSIX. ii libdb3 3.2.9-22 Berkeley v3 Database Libraries [ru ii libpam0g 0.76-22 Pluggable Authentication Modules l -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
