Article delegate-en/2608 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A2604@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: Problem with PAM authentication
11 May 2004 09:23:06 GMT feedback@delegate.org (Yutaka Sato)
The DeleGate Project


Hi,

On 04/28/04(01:28) you Jehan-Guillaume de Rorthais <p4edabdyi-7pkjwoewerfr.ml@ml.delegate.org>
wrote in <_A2604@delegate-en.ML_>
 |I'm trying the PAM Authentication feature.
...
 |But, I can't authenticate any user who exists in the /etc/passwd file :/ .
 |I readed your doc and tested lots of conf, but I still don't success...
..
 |04/27 18:04:05.61 [5877] 1+2: ## dgpam = /usr/local/+delegate8.9.2/src/dgpam
 |04/27 18:04:05.61 [5877] 1+2:
 |dirfopen(/delegate/act/clients/12/172.25.73.0:172.25.73.0,r+): 81c37c8 [20]
 |04/27 18:04:05.62 [5877] 1+2: ## dgpam -a passwd adminjrr = HTTP/1.0 403^M
 |04/27 18:04:05.62 [5877] 1+2: ## Auth/PAM = -1 <adminjrr:****@-passwd.-.pam>
 |
 |As you see, I received and 403 error code...
 |My PAM version is the 0.56 on a Debian Woody up-to-date...
 |Could you please tell me what I forgoted/misanderstand or what's wrong in my conf ? 

If you see a line like follows in your LOGDIR/stderr.log,

   ## pam_authenticate [passwd][adminjrr] = 7
  
it is possible that your "dgpam" program is not installed with the
appropriate owner (root) and flags (set euid + egid flags).
It should be like this:

   % ls -l dgpam
   -r-sr-s---    1 root     dgowner     81107 May 11 18:07 dgpam

then this program must be executed by a user who belongs the owner's
group of the dgpam (dgowner in above example).

You can test if or not this is the case by invoking DeleGate under
super user adding OWNER=root parameter.

Cheers,
Yutaka
--
  D G   Yutaka Sato <y.sato@delegate.org> http://delegate.org/y.sato/
 ( - )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V