this is odd. I have been deploying LDAP at my company recently, and started going a bit deeper, this time on a woody machine trying to get libnss-ldap and libpam-ldap on a woody system.
I only plan to use PAM/LDAP for passwd. I have not done any special pam configuration. The issue is when I ssh in, using an account that is in /etc/passwd, with libnss-ldap installed, it authenticates me, then immediately disconnects. there are no errors, even if I do RSA authentication it disconnects me, really weird: [EMAIL PROTECTED]:~$ ssh -l admin -C gopher -1 Enter passphrase for RSA key '/home/aphro/.ssh/identity': Last login: Wed Mar 20 20:36:09 2002 from fury.mydomain.com on pts/4 Linux gopher 2.2.19 #1 SMP Fri Oct 5 10:53:37 PDT 2001 i686 unknown Most of the programs included with the Debian GNU/Linux system are freely redistributable; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Received disconnect from 192.168.50.8: Command terminated on signal 11. I don't even have pam_ldap installed(yet, I had it installed a few minutes ago but removed it). If I remove libnss-ldap, it does not disconnect me like this. from my syslog server: Mar 20 20:40:19 gopher sshd[7483]: Accepted rsa for admin from 192.168.50.119 port 2635 Mar 20 20:40:19 gopher sshd[7483]: Disconnecting: Command terminated on signal 11. What is weirder. is i am using the SAME package(recompiled for potato) on a potato system and its working fine(using LDAP to authenticate IMAP/POP logins with cyrus), and has been for a while. I am not using PAM with SSH there either, only using it for CYRUS. I'm at a loss ....it logs me in, and just disconnects for no apparent reason. I started SSH on another port and told it not to fork to background and increased debugging and it gave no errors either, just disconnect on signal 11. and to fix it, all i gotta do is dpkg -r libnss-ldap ..don't have to restart nscd, or anything and i can immediately login again. I'd like to get this working, for my samba/ldap password sync. any ideas? thanks! nate
