Hi, again -
I assume things still aren't working yet. Sorry
A brief summary:
1. The central problem is that you can't log in as anybody but "root".
You believe all this started when you tried installing dtc. I agree.
2. You removed dtc like this:
apt-get --purge remove dtc
apt-get --purge remove dtc-postfix-courier
This should have removed the package(s). Unfortunately, the original install "did stuff" that we're still trying to "un-do". The dtc user is one example of something that doesn't "automatically uninstall". It's benign. It looks like "winbind" is something else that it did.
3. You found this error in "/var/log/audit/audit.log":
Failed LOGIN(2) on /dev/tty5' for 'raspino', Authentication failure
pam_winbind (login:auth): getting password (0x00000388)
pam_winbind (login:auth): request wbcLogonUser failed: WBC_ERR_AUTH_ERROR
pam error: PAM_USER_UNKNOWN (10), NTSTATUS: NTSTATUS_NO_SUCH_USER
I suggested removing winbind, but then the "password" option in the GUI disappeared altogether, and you got this error trying to log in:
This is what is in the auth.log
PAM adding faulty module: /lib/security/pam_winbind.so
pam_succeed_if (gdm:auth): requirement "user ingroup no passwdlogin" not met by user 'raspino'
"Winbind" allows you to authenticate against a Windows Active Directory server. I believe our goal is to DISABLE it.
* Turn SELinux OFF:
* COMMENT OUT any references to winbind in your name resolution configuration:
... <= COMMENT OUT anything with "winbind" in it!
* COMMENT OUT any references to "winbind" or "Active Directory" from your Samba configuration:
vi /etc/smb.conf =>
# security = ads
# realm = LAB.EXAMPLE.COM
# password server = 10.0.0.1
# winbind enum users = yes
# winbind enum groups = yes
# winbind use default domain = yes
* RE-INSTALL the Winbind package
apt-get install winbind
<= I think you need it - we just want to make sure it's DISABLED
* Reboot and double-check your configuration
<= Make sure /etc/nsswitch.conf, /etc/selinux/conf files are still OK