Quote:
Originally Posted by unSpawn
What do your system logs (see /etc/syslog.conf) say?
|
Nothing in the logs relating to this error
Quote:
Originally Posted by unSpawn
Your PAM file pam_cracklib.so line args read "retry=3 type=".
|
This line on another system (that's working) read "retry=3" so I deleted the "type=" but it made no difference.
Quote:
Originally Posted by unSpawn
"strace -v -o /tmp/passwd.strace passwd <someuser>". Look for clues ( egrep "(\-.1|ENO.*)$" /tmp/passwd.strace ).
|
The egrep returned ...
Code:
access("/etc/suid-debug", F_OK) = -1 ENOENT (No such file or directory)
open("/etc/ld.so.preload", O_RDONLY) = -1 ENOENT (No such file or directory)
connect(3, {sa_family=AF_UNIX, path="/var/run/.nscd_socket"}, 110) = -1 ENOENT (No such file or directory)
which is the same as the working system but if I look through the file it ends like this (with the first 2 lines repeated many times)
Code:
open("/etc/.pwd.lock", O_WRONLY|O_CREAT, 0600) = -1 EACCES (Permission denied)
nanosleep({0, 1000000}, NULL) = 0
open("/etc/.pwd.lock", O_WRONLY|O_CREAT, 0600) = -1 EACCES (Permission denied)
select(0, NULL, NULL, NULL, {2, 739930}) = 0 (Timeout)
write(2, "passwd: Authentication token man"..., 48) = 48
munmap(0x4001e000, 14572) = 0
munmap(0x40134000, 97172) = 0
munmap(0x40161000, 85184) = 0
munmap(0x40022000, 32352) = 0
munmap(0x40176000, 40128) = 0
munmap(0x4014c000, 15304) = 0
munmap(0x40018000, 14112) = 0
munmap(0x4001c000, 6432) = 0
munmap(0x40016000, 4096) = 0
exit_group(1) = ?
I can change the permissions on /etc/.pwd.lock to 660 and I get
Code:
open("/etc/shadow", O_RDONLY) = -1 EACCES (Permission denied)
then "chmod 440 /etc/shadow" and I can change passwords as root but not as a user because I'm left with...
Code:
rename("/etc/nshadow", "/etc/shadow") = -1 EACCES (Permission denied)
BUT I'm not suposed to be changing thses file permissions. Somehow the passwd command should be run by users but allow changes in root only files and it isn't working?
Quote:
Originally Posted by unSpawn
If that shows no clues then *reboot* and on boot drop to runlevel 1 and perform a system audit. If you post errors or loglines please be verbose and post *exact* ones.
|
Can you explain that? I can go to runlevel 1 ("/sbin/init 1") but don't know what to do when I get there.
Thanks