LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 05-29-2005, 07:32 PM   #1
upsco2002
LQ Newbie
 
Registered: May 2005
Location: Seattle, WA
Distribution: Fedora
Posts: 2

Rep: Reputation: 0
Remote Authentication failing in multiple apps


I'm trying to set up a new Linux server using Fedora Core 3, with various apps like qmail, apache, etc. I'm having a problem though whenever I try to log in remotely to the linux box from WinXP as any of the local linux users. A few examples:

1) I try to configure a POP3 email client to log into the mailbox of one of my linux users, and it fails saying my password is incorrect.
2) I try to configure samba and set up a remote share (I included encrypt passwords = yes and the smbpasswd programs, just to get that out of the way), and I can see the share but can not authenticate to access it with the username / password combos I'm sending for my users.
3) I've now tried to set up an FTP server on the host, vsftpd, did an ldd vsftpd to confirm that it is linking up with PAM, put in the vsftpd.pam file into the /etc/pam.d/ path, also set local_enable=YES in the vsftpd.conf file. But whenever I send in the auth credentials it says there is an invalid password.

The fact that I'm having these password problems across all of these different apps is telling me one of two things:
1) I ain't installing them correctly for the right authentication mechanisms.
2) There's something misconfigured globally that isn't allowing me to remotely login to my linux box using the linux users from my Windows box.

If I need to follow up with the contents of any files or outputs of shell commands let me know and I'll be happy to do so (I'm just not sure what would be helpful at this point for everyone). Thanks again for the help, it is much appreciated.
 
Old 05-30-2005, 09:26 AM   #2
hob
Senior Member
 
Registered: Mar 2004
Location: Wales, UK
Distribution: Debian, Ubuntu
Posts: 1,075

Rep: Reputation: 45
Both vsftpd and Samba actually have configuration quirks, so it's likely that PAM isn't the culprit.

(I'm assuming that you've already done a connectivity test with ping and a DNS check with nslookup).

The one remote service you can always rely on to work without issue is SSH - it's installed and active by default, uses only one port (TCP 22), and by default all local users can access it. Change the firewall to allow it through. Use PuTTY and WinSCP on Windows to connect - these are free, very reliable and require no extra configuration.

(Note that the file transfer functions of SSH are similar to FTP. HTTP/WebDAV and SSH have made FTP essentially a legacy service at this point).

The quirk with vsftpd is that it will sit there and refuse to allow any access until the chroot files are there and correct - check the config file and read the chroot file option comments carefully, as it doesn't work quite the way you'd intuitively expect.

Be aware that Samba *doesn't* use PAM. Windows stores passwords in a UNIX-incompatible way, so Samba has to maintain a separate database of users. Check the "smbpasswd" man page, or better yet, the Samba Website for absolutely excellent documentation that will take you setting up any configuration you want.
 
Old 05-30-2005, 06:47 PM   #3
upsco2002
LQ Newbie
 
Registered: May 2005
Location: Seattle, WA
Distribution: Fedora
Posts: 2

Original Poster
Rep: Reputation: 0
Thanks hob for the reply, I will try out SSH instead. I did figure out at least the problems I was having with qmail, had nothing to do with PAM at all; further reading in the documentation told me I wasn't using the proper username format, so I have those figured out now.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Multiple Machines behind single Static IP - failing remote ssh Animalector Linux - Security 8 08-18-2005 06:01 PM
vsftpd 2.0.3 ftp authentication failing for local user scooger Linux - Software 1 05-17-2005 10:48 AM
Remote authentication sinistamunkey Linux - Networking 2 02-10-2005 06:56 PM
ssh-key authentication failing on one machine chr15t0 Linux - Security 3 08-21-2003 04:24 PM
Red Hat 8/9 NIS Authentication failing airrr Linux - Networking 2 08-05-2003 11:05 AM


All times are GMT -5. The time now is 02:57 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration