Greetings,
I'm running the 'woody' distro on a PC with Linux 2.4.12-ac6. I
installed the 'nis' debian package, and followed the nis.debian.howto
that comes with that package. The setup went smoothly, and ypbind was
able to contact the NIS server. ypcat works. However, NIS users are
unable to authenticate to the system using SSH.
Here's what it looks like from the outside:
{myhost}(~)$ ssh hostname
[EMAIL PROTECTED]'s password:
Permission denied, please try again.
[EMAIL PROTECTED]'s password:
Permission denied, please try again.
[EMAIL PROTECTED]'s password:
Permission denied (publickey,password,keyboard-interactive).
Here's what it looks like from the inside:
hostname:/var/log# tail -f auth.log
Dec 13 17:25:52 hostname sshd[1204]: input_userauth_request: illegal
user brent
Dec 13 17:25:52 hostname sshd[1204]: Failed none for illegal user
brent
from 123.45.67.89 port 53110 ssh2
Dec 13 17:25:53 hostname sshd[1204]: Failed password for illegal user
brent from
123.45.67.89 port 53110 ssh2
Dec 13 17:26:20 hostname last message repeated 2 times
Dec 13 17:26:20 hostname sshd[1204]: Failed keyboard-interactive for
illegal user brent from 123.45.67.89 port 53110 ssh2
Dec 13 17:26:20 hostname last message repeated 2 times
Dec 13 17:26:20 hostname sshd[1204]: Connection closed by 123.45.67.89
hostname:/var/log# ypcat passwd | grep brent
brent:CrYpT3DP4ss:1059:200::/home/foo/brent:/usr/local/bin/tcsh
My first thought was that it was a PAM issue. Some websearches turned
up this:
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=55011
It appears that Redhat had a similar problem, but has a solution. I
tried copying the pam_pwdb modules from a redhat box (with the libs),
and subsituting it for pam_unix in /etc/pam.d/ssh and login, but no
luck.
Any suggestions?
Thanks,
Brent
