[Bug 752511] Re: Invalid Shell produces "invalid user" error in auth.log
Steve Langasek
steve.langasek at canonical.com
Sat Jun 4 21:45:53 UTC 2011
Sorry, but this is not true at all. The pam_unix module does not check
the value of the shell field in the password file. If pam_unix is
returning failed password, it's because the *password* is incorrect.
** Changed in: pam (Ubuntu)
Status: New => Invalid
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to pam in Ubuntu.
https://bugs.launchpad.net/bugs/752511
Title:
Invalid Shell produces "invalid user" error in auth.log
Status in “pam” package in Ubuntu:
Invalid
Bug description:
Description: Ubuntu 8.04.4 LTS
Release: 8.04
I believe this bug to be in the package PAM.
To reproduce :
1. Create a new user ( useradd -m funuser )
2. Change user's shell to ( /bin/scponly, the shell is purposefully invalid )
3. Set a password ( passwd funuser )
4. Try and log in using SSH
What happens ( tail /var/log/auth.log ) :
Apr 6 09:16:35 ubuntu1 sshd[8593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ipaddress user=funuser
Failed password for invalid user funuser from ipaddress port 53393 ssh2
What should happen ( tail /var/log/auth.log ) :
Apr 6 09:16:35 ubuntu1 sshd[8593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ipaddress user=funuser
Invalid shell for user funuser from ipaddress port 53393 ssh2
The error message given in auth.log is entirely useless and a useful
message is only available if pam_unix has the debug parameter added to
it.
More information about the foundations-bugs
mailing list