Re: can't get lastlogin info wen loging in trough ssh

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Hello,
Finally I solved the problem.

This is my /etc/pam.d/sshd file:

#%PAM-1.0
auth       required     pam_stack.so service=system-auth
auth       required     pam_nologin.so
account    required     pam_stack.so service=system-auth
password   required     pam_stack.so service=system-auth
session    required     pam_stack.so service=system-auth
session    required     pam_limits.so
session    optional     pam_console.so
session    optional     /lib/security/pam_lastlog.so


I was reading a little bit about pam, and find out that there is a debug
flag to set on a pam module.

So, i set the module pam_lastlog to debug like this:
session    optional     /lib/security/pam_lastlog.so debug

I add the following line to my syslog.conf to capture all the
authentication procedures:
auth.*                                                  /var/log/authlog

And guess what find the the /var/log/atuhlog file???
PAM-lastlog[5890]: unable to open /var/log/lastlog file

Damn...
Problem solved. I chmod to 644 that file.

The option LASTLOG_ENAB in /etc/login.def it's not required to display
the lastlog message.

Many thanks to all for the help!
BR,
Matías


Laurent CARON wrote:
| Matías López Bergero wrote:
|
|> -----BEGIN PGP SIGNED MESSAGE-----
|> Hash: SHA1
|>
|> Adrian C. wrote:
|> | See /etc//login.defs
|> |
|> | LASTLOG_ENAB      yes
|
|
| /etc/pam.d/ssh
|
| #%PAM-1.0
| auth       required     pam_nologin.so
| auth       required     pam_unix.so
| auth       required     pam_env.so # [1]
|
| account    required     pam_unix.so
|
| session    required     pam_unix.so
| session    optional     pam_lastlog.so # [1]
| session    optional     pam_motd.so # [1]
| session    optional     pam_mail.so standard noenv # [1]
| session    required     pam_limits.so
|
| password   required     pam_unix.so
|

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFBgpBcRB0HKLRQp/gRAsTRAKC7jzOXkT9xhYQcirC1aJavFWZGrACfXZfL
dT/05ljBoy7TpO9dNLHjUEU=
=h/8P
-----END PGP SIGNATURE-----
-
: send the line "unsubscribe linux-admin" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[Index of Archives]     [Linux Newbie]     [Audio]     [Hams]     [Kernel Newbies]     [Util Linux NG]     [Security]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux RAID]     [Linux Device Drivers]     [Samba]     [Video 4 Linux]     [Git]     [Fedora Users]

  Powered by Linux