Solaris9でqpopperを--with-pam=qpopperで
ビルドしましたが、認証で
-ERR [AUTH] PAM authentication failed for user ”test3”: Authentication failed (9)
とはじかれてしまいます。
Solarisのpam.confを疑ってますが、解決方法を教えていただけないでしょうか。
よろしくお願いします
http://www.mail-archive.com/qpopper@lists.pensive.org/msg015...
Re: problem w/ Solaris 8, PAM, and qpoppper 4.0.3
私(trueonline)は Solaris のエキスパートではありません。回答が誤っていた場合は、ポイント等不要です。同じ現象をSolaris 8で経験したユーザのqpopper MLへの投稿(英文)です。pam.confとsyslog.confにデバッグエントリを追加して、デバッグログを取得して詳細を調べてみてはいかがですか。
http://docs.sun.com/app/docs/doc/817-0365/6mg5vpmfi?a=view
docs.sun.com: System Administration Guide: Security Services
Sunのドキュメンテーション(英文)の PAM Subsystem の項です。ログ取得の設定方法が書いてあります。
http://docs.sun.com/app/docs/doc/817-0365/6mg5vpmfp?a=view
docs.sun.com: System Administration Guide: Security Services
Sunのドキュメンテーション(英文)のPAM Referenceの項です。どの認証方法をお使いでしょうか。
ありがとうございます。
下記でできました。いただいた回答で直接の解決にはならなかったのですが、別な意味で勉強になったので私の独断ですいません、半分のポイントは受け取ってください。
#ident”@(#)pam.conf1.2002/01/23 SMI”
#
# Copyright 1996-2002 Sun Microsystems, Inc. All rights reserved.
# Use is subject to license terms.
#
# PAM configuration
#
# Unless explicitly defined, all services use the modules
# defined in the ”other” section.
#
# Modules are defined with relative pathnames, i.e., they are
# relative to /usr/lib/security/$ISA. Absolute path names, as
# present in this file in previous releases are still acceptable.
#
# Authentication management
#
# login service (explicit because of pam_dial_auth)
#
loginauth required/usr/lib/security/$ISA/pam_unix.so.1
loginauth required/usr/lib/security/$ISA/pam_dial_auth.so.1
loginaccount requisite/usr/lib/security/$ISA/pam_roles.so.1
loginaccount required/usr/lib/security/$ISA/pam_projects.so.1
loginaccount required/usr/lib/security/$ISA/pam_unix.so.1
#
dtlogin auth required/usr/lib/security/$ISA/pam_unix.so.1
dtloginaccount requisite/usr/lib/security/$ISA/pam_roles.so.1
dtlogin account required/usr/lib/security/$ISA/pam_projects.so.1
dtlogin account required/usr/lib/security/$ISA/pam_unix.so.1
#
# rlogin service (explicit because of pam_rhost_auth)
#
rloginauth sufficient/usr/lib/security/$ISA/pam_rhosts_auth.so.1
rloginauth required/usr/lib/security/$ISA/pam_unix.so.1
#
# rsh service (explicit because of pam_rhost_auth,
# and pam_unix_auth for meaningful pam_setcred)
#
rshauth required/usr/lib/security/$ISA/pam_rhosts_auth.so.1
otherauth required/usr/lib/security/$ISA/pam_ldap.so.1
#
# PPP service (explicit because of pam_dial_auth)
#
pppauth requisitepam_authtok_get.so.1
pppauth requiredpam_dhkeys.so.1
pppauth requiredpam_unix_auth.so.1
pppauth requiredpam_dial_auth.so.1
#
# Default definitions for Authentication management
# Used when service name is not explicitly mentioned for authenctication
#
#otherauth requisitepam_authtok_get.so.1
#otherauth requiredpam_dhkeys.so.1
#otherauth requiredpam_unix_auth.so.1
#
# telnet service
#
telnetauth required/usr/lib/security/$ISA/pam_unix.so.1
telnetaccount required/usr/lib/security/$ISA/pam_unix.so.1
#
# ftp service
#
ftpauth required/usr/lib/security/$ISA/pam_unix.so.1
ftpaccount required/usr/lib/security/$ISA/pam_unix.so.1
#
# ssh service
#
sshauth required/usr/lib/security/$ISA/pam_unix.so.1
sshaccount required/usr/lib/security/$ISA/pam_unix.so.1
#
# passwd command (explicit because of a different authentication module)
#
passwdauth required/usr/lib/security/$ISA/pam_passwd_auth.so.1
#
# su command
#
suauth required/usr/lib/security/$ISA/pam_unix.so.1
suaccount required/usr/lib/security/$ISA/pam_unix.so.1
#
# cron service (explicit because of non-usage of pam_roles.so.1)
#
#cronaccount requiredpam_projects.so.1
#cronaccount requiredpam_unix_account.so.1
#
# Default definition for Account management
# Used when service name is not explicitly mentioned for account management
#
otheraccount requisite/usr/lib/security/$ISA/pam_roles.so.1
otheraccount required/usr/lib/security/$ISA/pam_projects.so.1
otheraccount required/usr/lib/security/$ISA/pam_ldap.so.1
#
# Default definition for Session management
# Used when service name is not explicitly mentioned for session management
#
othersession required/usr/lib/security/$ISA/pam_unix.so.1
#
# Default definition for Password management
# Used when service name is not explicitly mentioned for password management
#
otherpassword sufficient/usr/lib/security/pam_ldap.so.1
otherpassword required/usr/lib/security/pam_unix.so.1
dtsession auth required/usr/lib/security/$ISA/pam_unix.so.1
#
# Support for Kerberos V5 authentication (uncomment to use Kerberos)
#
#rloginauth optionalpam_krb5.so.1 try_first_pass
#loginauth optionalpam_krb5.so.1 try_first_pass
#otherauth optionalpam_krb5.so.1 try_first_pass
#cronaccount optional pam_krb5.so.1
#otheraccount optional pam_krb5.so.1
#othersession optional pam_krb5.so.1
#otherpassword optional pam_krb5.so.1 try_first_pass