[CentOS] swat is now broken

Wed Mar 26 02:35:42 UTC 2008
Jason Pyeron <jpyeron at pdinc.us>

 

seems to mess up the pam for swat.

 

[root at host67 security]# rpm -qf /etc/pam.d/samba

samba-3.0.25b-1.el4_6.4

[root at host67 security]# cat /etc/pam.d/samba

#auth   required        /lib/security/pam_stack.so service=system-auth

#account        required        /lib/security/pam_stack.so
service=system-auth

auth    required        pam_stack.so service=system-auth

account required        pam_stack.so service=system-auth

 

and now it works

 

See below for debug/effort

 

 

 

 

 

 

==> /var/log/messages <==

Mar 24 09:50:58 host67 swat[26626]: PAM unable to
dlopen(/lib/security/pam_stack.so)

Mar 24 09:50:58 host67 swat[26626]: PAM [dlerror:
/lib/security/pam_stack.so: cannot open shared object file: No such file or
directory]

Mar 24 09:50:58 host67 swat[26626]: PAM adding faulty module:
/lib/security/pam_stack.so

Mar 24 09:50:58 host67 swat[26626]: [2008/03/24 09:50:58, 0]
auth/pampass.c:smb_pam_auth(534)

Mar 24 09:50:58 host67 swat[26626]:   smb_pam_auth: PAM: UNKNOWN ERROR while
authenticating user root

Mar 24 09:50:58 host67 swat[26626]: [2008/03/24 09:50:58, 0]
auth/pampass.c:smb_pam_passcheck(809)

Mar 24 09:50:58 host67 swat[26626]:   smb_pam_passcheck: PAM: smb_pam_auth
failed - Rejecting User root !

 

[root at host67 ~]# rpm -ql pam | grep stack

/lib64/security/pam_stack.so

/usr/share/doc/pam-0.77/txts/README.pam_stack

/usr/share/man/man8/pam_stack.8.gz

[root at host67 ~]# up2date --whatprovides /lib/security/pam_stack.so

pam-0.77-66.23.i386

[root at host67 ~]# rpm -q pam

pam-0.77-66.23

[root at host67 ~]# uname -a

Linux host67.1.internal.pdinc.us 2.6.9-55.0.2.ELsmp #1 SMP Tue Jun 26
14:14:47 EDT 2007 x86_64 x86_64 x86_64 GNU/Linux

[root at host67 ~]# up2date -u pam

 

Fetching Obsoletes list for channel: centos4-Base...

 

Fetching Obsoletes list for channel: centos4-Updates...

 

Fetching Obsoletes list for channel: centos4-extras...

 

Fetching Obsoletes list for channel: centos4-addons...

 

Fetching rpm headers...

########################################

 

Name                                    Version        Rel

----------------------------------------------------------

 

All packages are currently up to date

[root at host67 ~]# up2date -u pam --arch=i386

 

Fetching Obsoletes list for channel: centos4-Base...

 

Fetching Obsoletes list for channel: centos4-Updates...

 

Fetching Obsoletes list for channel: centos4-extras...

 

Fetching Obsoletes list for channel: centos4-addons...

 

Fetching rpm headers...

########################################

 

Name                                    Version        Rel

----------------------------------------------------------

pam                                     0.77           66.23
i386

 

 

Testing package set / solving RPM inter-dependencies...

 

Downloading headers to solve dependencies...

#######################################

Downloading headers to solve dependencies...

########################################

audit-libs-1.0.15-3.el4_6.1 ########################## Done.

audit-libs-1.0.15-3.el4_6.1 ########################## Done.

cracklib-2.8.9-1.3.i386.rpm ########################## Done.

cracklib-2.8.9-1.3.i386.rpm ########################## Done.

glib2-2.4.7-1.i386.rpm:     ########################## Done.

glib2-2.4.7-1.i386.rpm:     ########################## Done.

pam-0.77-66.23.i386.rpm:    ########################## Done.

pam-0.77-66.23.i386.rpm:    ########################## Done.

cracklib-dicts-2.8.9-1.3.i3 ########################## Done.

cracklib-dicts-2.8.9-1.3.i3 ########################## Done.

Preparing              ########################################### [100%]

 

Installing...

   1:glib2                  ###########################################
[100%]

   2:audit-libs             ###########################################
[100%]

   3:cracklib               ###########################################
[100%]

   4:cracklib-dicts         ###########################################
[100%]

   5:pam                    ###########################################
[100%]

The following packages were added to your selection to satisfy dependencies:

 

Name                                    Version        Release

--------------------------------------------------------------

audit-libs                              1.0.15         3.el4_6.1

cracklib                                2.8.9          1.3

glib2                                   2.4.7          1

cracklib-dicts                          2.8.9          1.3

 

[root at host67 ~]# tail -f /var/log/messages

Mar 25 19:26:17 host67 swat[5003]: PAM unable to
dlopen(/lib/security/pam_stack.so)

Mar 25 19:26:17 host67 swat[5003]: PAM [dlerror: /lib/security/pam_stack.so:
cannot open shared object file: No such file or directory]

Mar 25 19:26:17 host67 swat[5003]: PAM adding faulty module:
/lib/security/pam_stack.so

Mar 25 19:26:17 host67 swat[5003]: [2008/03/25 19:26:17, 0]
auth/pampass.c:smb_pam_auth(534)

Mar 25 19:26:17 host67 swat[5003]:   smb_pam_auth: PAM: UNKNOWN ERROR while
authenticating user root

Mar 25 19:26:17 host67 swat[5003]: [2008/03/25 19:26:17, 0]
auth/pampass.c:smb_pam_passcheck(809)

Mar 25 19:26:17 host67 swat[5003]:   smb_pam_passcheck: PAM: smb_pam_auth
failed - Rejecting User root !

 

[root at host67 ~]# dir /lib/security/pam_stack.so

-rwxr-xr-x  1 root root 10764 Nov 16 22:59 /lib/security/pam_stack.so

[root at host67 ~]# rpm -Vf /lib/security/pam_stack.so

S.5....T. c /etc/pam.d/system-auth

 [root at host67 ~]# rpm -e glib2.i386 pam-0.77-66.23.i386

[root at host67 ~]# rpm -e audit-libs.i386

[root at host67 ~]# rpm -e cracklib.i386

[root at host67 ~]# rpm -e cracklib-dicts.i386

[root at host67 ~]#

 

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

-                                                               -

- Jason Pyeron                      PD Inc. http://www.pdinc.us
<http://www.pdinc.us/>  -

- Principal Consultant              10 West 24th Street #100    -

- +1 (443) 269-1555 x333            Baltimore, Maryland 21218   -

-                                                               -

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

 

This message is for the designated recipient only and may contain

privileged, proprietary, or otherwise private information. If you

have received it in error, purge the message from your system and

notify the sender immediately.  Any other use of the email by you

is prohibited. 

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos/attachments/20080325/efc47a2f/attachment-0004.html>