Those pam components are OS specific, so it is outside of OpenPKG. By default, Linux generally denies while Solaris allows. What I did is install the take the sudo pam file from the native sudo command on linux and put that into place. That resolved all of the issues.
On Wed, 2004-11-10 at 13:01 -0600, Aaron Bostick wrote: > Ok, I have answered my own question. > > On solaris which uses pam.conf instead of pam.d/, there was this entry: > > sudo auth required /usr/lib/security/$ISA/pam_unix.so > try_first_pass > > On linux, in pam.d, the sudo file had this: > > auth required pam_unix_auth.so shadow nodelay > > I merely appended the try_first_pass command to the end of the above > line, and the second password prompt went away. > > My next question is, since both of these entries are pam entries from > OpenPKG, why do we get try_first_pass for Solaris but not for Linux? > > Is this something that should be added to the sudo spec file or > something? > > Thanks, > Aaron > > On Wed, 2004-11-10 at 10:41, Aaron Bostick wrote: > > I thought for sure I read something about this on the list before but > > cannot seem to find it in the archives. > > > > Anyone know what the fix is to make sudo ask you for your password > > only > > once? I am assuming that sudo is asking once and then pam is asking > > again? > > > > Either way, if I type my password twice it completes successfully. > > > > I have only seen this on linux openpkg rollouts, not on solaris, but I > > have seen it on both gentoo and mandrake at this point. > > > > Thanks, > > Aaron > > ______________________________________________________________________ > > The OpenPKG Project www.openpkg.org > > User Communication List [EMAIL PROTECTED] > > > ______________________________________________________________________ > The OpenPKG Project www.openpkg.org > User Communication List [EMAIL PROTECTED] > -- David M. Fetter <[EMAIL PROTECTED]> PSU
signature.asc
Description: This is a digitally signed message part