LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 11-19-2005, 06:37 AM   #1
systemparadox
Member
 
Registered: Jul 2004
Location: Tavistock, Devon, England
Distribution: Slackware 9.1, Mandrake 9.0/9.1/10.0, LFS 6.0, Knoppix 3.1/3.3
Posts: 73

Rep: Reputation: 15
PAM: user{add,del} asks for password


Hi.
I have recently installed PAM on my new LFS system.

Now, when I do 'useradd test', it asks me for a password.
Which password is it asking for!?!

Whatever password I put in, I get useradd: PAM authentication failed

The same thing happens with userdel, and I assume groupadd/groupdel.

I have somehow got past this password prompt a few times before (I can't work out how now), and then it asks me for a new password- even if I am deleting a user! Who is the new password for?

How can I make it so that these programs don't ask for any passwords, and create users with no password and disabled accounts ("x" or "!" for the password field in /etc/passwd and /etc/shadow), like they do without PAM?

My current PAM config (in /etc/pam.d) is:
login:
Code:
auth            required        pam_securetty.so
#auth           sufficient      pam_rootok.so
auth            required        pam_unix.so shadow nullok
account         required        pam_unix.so
password        required        pam_unix.so shadow nullok
#password       required        pam_cracklib.so retry=3
#password       required        pam_unix.so shadow nullok use_authtok
session         required        pam_unix.so
su:
Code:
auth            sufficient      pam_rootok.so
auth            required        pam_unix_auth.so
account         required        pam_unix.so
password        required        pam_unix.so
session         required        pam_unix.so
useradd:
Code:
auth            required        pam_securetty.so
#auth           sufficient      pam_rootok.so
auth            required        pam_unix.so shadow nullok
account         required        pam_unix.so
password        required        pam_unix.so shadow nullok
#password       required        pam_cracklib.so retry=3
#password       required        pam_unix.so shadow nullok use_authtok
session         required        pam_unix.so
OTHER:
Code:
#
# default; wake up! This application is not configured
#
auth     required       pam_warn.so
password required       pam_warn.so

#
# default; standard UN*X access
#
#auth    sufficient     pam_rootok.so
auth     required       pam_unix.so
account  required       pam_unix.so
password required       pam_unix.so
session  required       pam_unix.so
Thanks in advance
Simon
 
Old 11-19-2005, 03:59 PM   #2
systemparadox
Member
 
Registered: Jul 2004
Location: Tavistock, Devon, England
Distribution: Slackware 9.1, Mandrake 9.0/9.1/10.0, LFS 6.0, Knoppix 3.1/3.3
Posts: 73

Original Poster
Rep: Reputation: 15
Found a solution (it was in the BLFS shadow installation section- which I had followed lol).
The useradd, userdel, usermod, group{add,del,mod} (and a few others) should have the password line as:

password required pam_permit.so
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How to add an user, without password?? cenzole Linux - Newbie 21 08-07-2013 05:58 PM
add a user with password without prompt grendel-IT Linux - Software 7 09-27-2006 02:07 PM
Help! Cannot Add a User to User Manager or Change Root Password lennysokol Linux - General 2 06-25-2005 09:59 AM
add user prompt for password on login redir Linux - Newbie 2 02-28-2005 11:01 AM
Printing to Windows printer asks for user/password vman33197 Fedora 1 10-10-2004 06:07 PM


All times are GMT -5. The time now is 02:57 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration