[1828] in RedHat Linux List
NYS and pam strange behaviour, 2nd part
daemon@ATHENA.MIT.EDU (adellam@zia.ms.it)
Wed Oct 30 11:56:24 1996
Date: Wed, 30 Oct 1996 17:42:46 +0100 (MET)
From: adellam@zia.ms.it
To: redhat-list@redhat.com
CC: adellam@posso.dm.unipi.it
Resent-From: redhat-list@redhat.com
Reply-To: redhat-list@redhat.com
Hi all,
I posted yesterday a message about problems with NYS and shadow on a
4.0 distribution.
There are two problems, one is libc related and one is pam(?) related.
1) with the NYS client activated, all the requests seem to take for
argument the yp server.
Examples:
barsotti.dm.unipi.it is the yp server, janet is the 4.0 box, zharkov
is a 3.0.3 + shadow rpms box, risch is an IBM r6000 with aix 4.1
adellam@janet [191][~] --> w
4:08pm up 1 day, 36 min, 2 users, load average: 0.03, 0.01, 0.00
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
test ttyp1 barsotti.dm.uni 3:26pm 2:19 0.36s 0.36s -csh
adellam ttyp0 barsotti.dm.uni 12:29pm 0.00s 1.34s 0.03s w
The user test is logged via rlogin from max.dm.unipi.it, the user
adellam is logged via rlogin from risch
adellam@janet [192][~] --> finger @risch
[barsotti.dm.unipi.it]
Login Name TTY Idle When Where
adellam Andrea Dell'Amico p0 17 Mon 11:33 risch
This finger take barsotti like argument, here is a working finger to
risch and barsotti:
adellam@risch [113][~]
--> finger @risch
[risch.dm.unipi.it]
Login Name TTY Idle When Site Info
adellam Andrea Dell'Amico *l0 14d Mon 11:28
adellam Andrea Dell'Amico p1 Wed 16:23
adellam Andrea Dell'Amico p2 18 Mon 11:36
adellam Andrea Dell'Amico p3 3:30 Mon 19:07
adellam Andrea Dell'Amico p4 3:28 Tue 14:29
adellam Andrea Dell'Amico p5 1:54 Wed 14:51
adellam Andrea Dell'Amico p6 1 Wed 12:27
adellam Andrea Dell'Amico p7 24 Wed 16:23
adellam Andrea Dell'Amico p8 45 Wed 14:23
adellam Andrea Dell'Amico p9 11 Wed 16:25
adellam Andrea Dell'Amico p10 3:25 Tue 16:37
adellam Andrea Dell'Amico p11 5 Wed 16:27
adellam Andrea Dell'Amico p13 3:55 Wed 12:51
adellam Andrea Dell'Amico p14 36 Wed 13:13
adellam@risch [114][~]
--> finger @barsotti
[barsotti.dm.unipi.it]
Login Name TTY Idle When Where
adellam Andrea Dell'Amico p0 18 Mon 11:33 risch
And for rsh, rlogin, etc. I had to add barsotti to my .rhosts file.
libc 5.2.18 with NYS doesn't have this bug.
2) pam(or util-linux?) + shadow passwords + NYS doesn't work like
standard shadow + NYS (and plain nis) does.
I have two yp servers that are Sun with SunOS with C2 enabled. So the
passwords aren't in the passwd.byname map but are in the
passwd.adjunct.byname map. Plain nis, and NYS, doesn't know about
passwd.adjunct, so we cannot authenticate using nis.
With shadow passwords, I build a /etc/shadow file from the sources of
passwd.adjunct.byname and redistribute it with rdist.
So I have the original /etc/passwd file without user entries, and a
/etc/shadow with the password of all users. With plain nis I was able
to use netgroups, too.
But now this solution doesn't work anymore; the problem is in login,
ftp, etc. binaries. When i substitute the 4.0 login binary with the
one that I find in the shadow rpms, all works in the old way.
Any suggestions?
Cheers,
andrea
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
________________________________________________________________________
http://www.redhat.com/RedHat-FAQ http://www.redhat.com/RedHat-Errata
http://www.redhat.com/RedHat-Tips http://www.redhat.com/mailing-lists
------------------------------------------------------------------------
To unsubscribe: mail -s unsubscribe redhat-list-request@redhat.com < /dev/null
