If you NFS mount any filesystems and don't restrict setuid programs try
out this one:
gcc -o mysh mysh.c
(on another machine, presumably the NFS server)
# chown root mysh
# chmod 4750 mysh
(on the machine you are locked out of)
$ ./mysh
$ id
uid=0(root) ...
On Thu, 2001-09-27 at 10:24, jtrostel@snapserver.com wrote:
> Of course you could also reboot in single user mode, fix the pam config files
> back to their original state and reboot to multiuser mode.
>
> (I have learned to always keep a copy of my old pam configs when messing with
> the settings)
>
> On 27-Sep-2001 Ajay Agrawalla wrote:
> > Well well.. If you have sshd running on yr box, then try using a ssh
> > client to login to it. I almost certain that the distribution of ssh u
> > would have do not use PAM to login. Then look at the log files(authlog,
> > messages) to see what's going on.
>
> Unless they changed the ssh pam config too.
>
> >
> > If this does not work, then try login in to box using other possible
> > mechanism, like ftp, etc and replace the login module with one which
> > doesn;t use pam to authenticate.
> >
> > HTH
> >
> > Ajay
> >
> >
> >
> > -----Original Message-----
> > From: pam-list-admin@redhat.com [mailto:pam-list-admin@redhat.com]On
> > Behalf Of Ganesan Kanavathy
> > Sent: Thursday, September 27, 2001 3:31 AM
> > To: pam-list@redhat.com
> > Subject: Cannot Login After Installing PAM
> >
> >
> >
> >
> > Hi there,
> >
> > Recently I have downloaded Linux-PAM-0.75 and installed on my linux
> > box running Redhat 7.0.
> >
> > I have faced real problem after rebooting the system. I cannot login on
> > the machine (not even telnet) .. it keep on going to the login screen.
> >
> > Something like it could not verify the password.
> >
> > But I noticed other programs like sendmail is running and email users
> > can retrieve and send mails.
> >
> > Please help me to solve this problem. What should I do in order to be
> > able to login into the system??? How do I restore the settings?
> >
> > Thanks in advanced.
> >
> > Regards,
> >
> > Ganesh
> >
> >
> >
> >
>
> --
> John M. Trostel
> Senior Software Engineer
> Quantum / SnapAppliances
> jtrostel@snapserver.com
>
>
>
> _______________________________________________
>
> Pam-list@redhat.com
> https://listman.redhat.com/mailman/listinfo/pam-list
#include <stdio.h>
#include <unistd.h>
#include <errno.h>
int main() {
setuid(0);
seteuid(0);
execl("/sbin/sh", "sh", NULL);
perror("execl");
}
