IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Linux Forum / 90% there...
Post #216,650
by inthane-chan
Picture of inthane-chan
7/27/05 12:29:10 PM
7/27/05 12:38:49 PM
Reply
New 90% there...
Found a oopsie in the page, didn't notice the comments section below which answers most of that question. The only problem is that the root account still does not work. In addition, after a reboot of the system, GDM gives an error that the GDM user does not exist.

Logging in as root under command shell gives the following:
Ubuntu 5.04 "Hoary Hedgehog" ws-twalkup tty1\n\nws-twalkup login: root\nPassword: (No, I'm not telling it to you, so neener-neener!)\nNo directory, logging in with HOME=/\n\nUbuntu 5.04 "Hoary Hedgehog" ws-twalkup tty1\n\nws-twalkup login:

'su' as a user gives the following:
twalkup@ws-twalkup:/$ su\nPassword: (No, I'm not telling it to you, so neener-neener!)\ntwalkup@ws-twalkup:/$

'sudo' as a user gives the following:
twalkup@ws-twalkup:/$ sudo emacs /etc/apt/sources.list\nsudo: unable to lookup ws-twalkup via gethostbyname()\nsendmail: fatal: file /etc/postfix/main.cf: parameter mail_owner: unknown user name value: postfix\nPassword: (No, I'm not telling it to you, so neener-neener!)\ntwalkup is not in the sudoers file.  This incident will be reported.\ntwalkup@ws-twalkup:/$ sendmail: fatal: file /etc/postfix/main.cf: parameter mail_owner: unknown user name value: postfix


Last one is obviously a combination of some weird user ID conflict issues combined with user 'twalkup' not being in the sudo'ers file. Included it more for completeness. Now trying machine in single user mode.
apt-get install godlike-powers
Expand Edited by inthane-chan July 27, 2005, 12:38:49 PM EDT
Expand All History
Post #216,654
by inthane-chan
Picture of inthane-chan
7/27/05 12:52:26 PM
Reply
New Wow, even recovery mode doesn't work.
Even reset the root password as given [link|http://wiki.clug.org.za/clugwiki/index.php/How_do_I_reset_my_root_password%3F|here]. My guess at this point is that the LDAP user list and the local machine user list are seriously out of sync in some way, but I have no idea how to resolve that. :P
apt-get install godlike-powers
Post #216,657
by pwhysall
Picture of pwhysall
7/27/05 1:45:41 PM
Reply
New If your PAM is broke, you're in trouble.

Peter
[link|http://www.ubuntulinux.org|Ubuntu Linux]
[link|http://www.kuro5hin.org|There is no K5 Cabal]
[link|http://guildenstern.dyndns.org|Home]
Use P2P for legitimate purposes!
Post #216,658
by inthane-chan
Picture of inthane-chan
7/27/05 1:47:58 PM
Reply
New I can still edit stuff.
Boot to another partition, mount /dev/hda1, and I've got full access. Just need to know what to kick.
apt-get install godlike-powers
Post #216,659
by pwhysall
Picture of pwhysall
7/27/05 1:51:50 PM
Reply
New Nog
start in /etc/pam.d and work outwards.

Peter
[link|http://www.ubuntulinux.org|Ubuntu Linux]
[link|http://www.kuro5hin.org|There is no K5 Cabal]
[link|http://guildenstern.dyndns.org|Home]
Use P2P for legitimate purposes!
Post #216,661
by inthane-chan
Picture of inthane-chan
7/27/05 2:14:27 PM
Reply
New So here's something interesting...
Here's the original contents of my /etc/pam.d/sudo file:

#%PAM-1.0\n\n@include common-auth\n@include common-account


The [link|http://craige.mcwhirter.com.au/blog/archive/2005/01/17/making_a_debian_or_ubuntu_mach|directions] I'm using read this:

$ sudo vi /etc/pam.d/sudo


Once deep in the bowells of the sudo file, you need to add one line above the existing line, something like this:

auth    sufficient      pam_ldap.so \nauth    required        pam_unix.so


My current sudo file reads something like this:

#%PAM-1.0\n\nauth    sufficient      pam_ldap.so\nauth    required        pam_unix.so\n\n@include common-auth\n@include common-account


I'm checking out any docs I can find, but does this look wrong to you guys?
apt-get install godlike-powers
Post #216,672
by inthane-chan
Picture of inthane-chan
7/27/05 3:09:24 PM
Reply
New Solution:
/etc/nsswitch.conf

Changed lines:
passwd: ldap\ngroup: ldap\nshadow: ldap

to:
passwd: ldap compat\ngroup: ldap compat\nshadow: ldap compat


root/su/sudo still no workee. Investigating.
apt-get install godlike-powers
Post #216,677
by folkert
Picture of folkert
7/27/05 3:32:20 PM
Reply
New Changed yet again.
Change this:
passwd: ldap compat\ngroup:  ldap compat\nshadow: ldap compat

to this:
passwd: ldap [NOTFOUND=continue] compat\ngroup:  ldap [NOTFOUND=continue] compat\nshadow: ldap [NOTFOUND=continue] compat


That is if I am reading your whole storyline properly.
--
[link|mailto:greg@gregfolkert.net|greg],
[link|http://www.iwethey.org/ed_curry|REMEMBER ED CURRY!] @ iwethey
[image|http://www.danasoft.com/vipersig.jpg||||]
Post #216,680
by inthane-chan
Picture of inthane-chan
7/27/05 3:58:34 PM
Reply
New What should this fix?
I still can't su/sudo/login as root after this change...
apt-get install godlike-powers
Post #216,709
by ben_tilly
7/27/05 6:05:52 PM
Reply
New You know that with sudo you use *your* password, right?
Just checking the stupid stuff...

Cheers,
Ben
I have come to believe that idealism without discipline is a quick road to disaster, while discipline without idealism is pointless. -- Aaron Ward (my brother)
Post #216,711
by inthane-chan
Picture of inthane-chan
7/27/05 6:14:38 PM
Reply
New Yep.
Post #216,719
by folkert
Picture of folkert
7/27/05 7:30:35 PM
Reply
New Take a look at:
man nsswitch.conf

It might just twink something for you that turns the light on for it.

Not to sure exactly how you have everything setup.


The Relevant part is:
\n`[' ( `!'? STATUS `=' ACTION )+ `]'\n\nwhere\n\nSTATUS => success | notfound | unavail | tryagain\nACTION => return | continue


I always try to stay away from Pam. If I do mess with pam, nearly always I use something designed to fuss with it. Lastime I used Webmin to manage the settings, which worked very well. That Might be extreme though in your case.
--
[link|mailto:greg@gregfolkert.net|greg],
[link|http://www.iwethey.org/ed_curry|REMEMBER ED CURRY!] @ iwethey
[image|http://www.danasoft.com/vipersig.jpg||||]
     "Good" LDAP workstation configuration howto? - (inthane-chan) - (12) - July 27, 2005, 10:52:27 AM EDT
         90% there... - (inthane-chan) - (11) - July 27, 2005, 12:38:49 PM EDT
             Wow, even recovery mode doesn't work. - (inthane-chan) - (10) - July 27, 2005, 12:52:26 PM EDT
                 If your PAM is broke, you're in trouble. -NT - (pwhysall) - (9) - July 27, 2005, 01:45:41 PM EDT
                     I can still edit stuff. - (inthane-chan) - (8) - July 27, 2005, 01:47:58 PM EDT
                         Nog - (pwhysall) - (7) - July 27, 2005, 01:51:50 PM EDT
                             So here's something interesting... - (inthane-chan) - July 27, 2005, 02:14:27 PM EDT
                             Solution: - (inthane-chan) - (5) - July 27, 2005, 03:09:24 PM EDT
                                 Changed yet again. - (folkert) - (4) - July 27, 2005, 03:32:20 PM EDT
                                     What should this fix? - (inthane-chan) - (3) - July 27, 2005, 03:58:34 PM EDT
                                         You know that with sudo you use *your* password, right? - (ben_tilly) - (1) - July 27, 2005, 06:05:52 PM EDT
                                             Yep. -NT - (inthane-chan) - July 27, 2005, 06:14:38 PM EDT
                                         Take a look at: - (folkert) - July 27, 2005, 07:30:35 PM EDT

"The professor in a thong"?
93 ms