Comments (6)
By the way, httpd error_log shows:
[Sat Jun 09 20:02:33 2012] [error] [client 192.168.0.129] AuthExtern pwauth
[/usr/local/bin/pwauth]: Failed (1) for user pwtest
[Sat Jun 09 20:02:33 2012] [error] [client 192.168.0.129] user pwtest:
authentication failure for "/": Password Mismatch
and /etc/pam.d/system-auth on CentOS 6.2 shows:
auth required pam_env.so
auth sufficient pam_fprintd.so
auth sufficient pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >= 500 quiet
auth required pam_deny.so
account required pam_unix.so
account sufficient pam_localuser.so
account sufficient pam_succeed_if.so uid < 500 quiet
account required pam_permit.so
password requisite pam_cracklib.so try_first_pass retry=3 type=
password sufficient pam_unix.so sha512 shadow nullok try_first_pass
use_authtok
password required pam_deny.so
session optional pam_keyinit.so revoke
session required pam_limits.so
session [success=1 default=ignore] pam_succeed_if.so service in crond quiet
use_uid
session required pam_unix.so
Original comment by [email protected]
on 10 Jun 2012 at 12:21
from mod-auth-external.
Anyone have a solve for this?
I having the same problem... using CentOS 6
Original comment by [email protected]
on 12 Sep 2012 at 7:32
from mod-auth-external.
[deleted comment]
from mod-auth-external.
I run into a similar problem (leading to "password mismatch errors") using the
instructions of http://www.server-world.info/en/note?os=CentOS_6&p=httpd&f=12
Finally I managed to solve it by doing the following:
1. Removed the SERVER_UIDS in config.h
2. edited the config.h and undefined the NOLOGIN_FILE and MIN_NOLOGIN_UID flags:
/* #define NOLOGIN_FILE "/etc/nologin" /**/
/* #define MIN_NOLOGIN_UID 1 /**/
3. after making pwauth, SUIDed the pwauth and assigned it to a group of my own
where the users I wanted to have access to it belong to
I think that the solution to the issue mentioned here was solved by step 2.
Original comment by [email protected]
on 2 Jan 2013 at 4:55
from mod-auth-external.
I was having the same problems where it works from the command line but not
when pwauth is called from the apache httpd process. In my case, it was selinux
denying access to the shadow file when pwauth was run by httpd process. To
test this theory, run the command
sudo setenforce 0
And try to login. If it works, you can permanently disable selinux by changing
SELINUX=enforcing
To
SELINUX=permissive
in /etc/selinux/config. I'm no selinux expert so I have not figured out a way
to configure selinux to give httpd access to shadow.
Original comment by [email protected]
on 3 Apr 2013 at 2:53
from mod-auth-external.
i have a similar problem on Gentoo. i've patched the source to show uid
failure (doesn't fail), input value (correct), and exit value (0) of pwauth.
so, pwauth is working perfectly and i'm still getting auth failure, so the code
in this module is breaking somewhere
Original comment by [email protected]
on 8 Apr 2013 at 9:09
from mod-auth-external.
Related Issues (20)
- checkpassword method appears to be broken in 3.2.x version HOT 5
- Internal Server Error when using SSL Virtual Host HOT 2
- Group Authentication not passing 'GROUP' env or argv variables HOT 4
- Modification to allow an loadbalancer between browser and server HOT 4
- Modification to allow an loadbalancer between browser and server HOT 1
- 1 minute wait before auth HOT 9
- Mod-auth-external Needs a New Maintainer HOT 1
- no php environment when using pipe HOT 5
- passing data as base64 to prevent injection HOT 2
- PAM ENV variables for auth script
- Environment to include REQUEST_METHOD - feature request HOT 1
- Excellent documentation! HOT 1
- Is mod_authnz_external thread-safe?
- Failure stops other authenticators HOT 1
- Makefile has install for default target should be build HOT 1
- Patch for /trunk/mod_authnz_external/mysql/mysql-auth.pl HOT 1
- Cant compile source (mod-auth-external) HOT 3
- Use on Windows with Apache 2.2 HOT 1
- [Patch] conn_rec->remote_ip compilation failure with Apache 2.4.1 HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from mod-auth-external.