Ra�l D: Pitt� Palma <[EMAIL PROTECTED]> writes: > you mean the UNIX passwords will expire soon? or that squid will cache > passwd for a small amoutn of time. > maybe i wasn't clear enough (english is not my 1st language), so here i go > again:
the pam authentication mode uses the UNIX users. Msec is set to 4 on MNF1 and the users passwords expire after a short period of time. > 1. I create a user on Linux, set a passwd for him/her > 2. execute /sbin/service squid reload , in order for squid to be aware > of the new user > 3. the auth token (user/passwd) works perfectly a couple of times, and > for a random time. > 4. after a random time, some users can not login using their passwd (who > gets affected happens randomly) > 5. sometimes, just reloading squid will fix the problems , so users can > authenticate against PAM I have never experienced that here ... so it's quite hard to reproduce > 6. sometimes, i have to reset their UNIX passwd in order to authenticate > against SQUID > this may come, as I said in my previous mail, because of the passwrod expiration after a short period of time. You can change this default behaviour by modifying msec. This has already been discussed on this ML several times. you can change this like the following: /bin/echo "no_password_aging_for(\"root\")" >> /etc/security/msec/level.local /bin/echo "no_password_aging_for(\"admin\")" >> /etc/security/msec/level.local /usr/bin/chage -M 99999 root /usr/bin/chage -M 99999 admin > of course, the burden in admin time is a PITA, because i have about 80 > users using squid. > thanks again for all your help. > I can modify the log level for squid/system/iptables or anything else if > someone want to peek at them. > > thanks for your help. > RP my 2cts, > >my 2 cts, > > ------------------------------------------------------------------------ > > > >____________________________________________________ > > Want to buy your Pack or Services from MandrakeSoft? Go to > > http://www.mandrakestore.com > >Join the Club : http://www.mandrakeclub.com > >____________________________________________________ > > > > ____________________________________________________ > Want to buy your Pack or Services from MandrakeSoft? > Go to http://www.mandrakestore.com > Join the Club : http://www.mandrakeclub.com > ____________________________________________________ -- Florin http://www.mandrakesoft.com http://people.mandrakesoft.com/~florin/
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
