| From: | Satoshi Nagayasu <nagayasus(at)nttdata(dot)co(dot)jp> |
|---|---|
| To: | Albe Laurenz <all(at)adv(dot)magwien(dot)gv(dot)at> |
| Cc: | PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: PAM auth |
| Date: | 2006-06-20 08:42:59 |
| Message-ID: | 4497B513.10905@nttdata.co.jp |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Albe,
Albe Laurenz wrote:
> /etc/pam.d/system-auth probably uses pam_unix.so to authenticate.
>
> Does the user exist on the machine and have the password you try?
Yes, I have same user name on my linux box and postgresql,
and they have same password (now).
> You could add 'debug' to the pam_unix.so lines in /etc/pam.d/system-auth
> and capture what PAM logs to syslog, maybe that will help.
Finally, by my small program, I found the PAM module is attempting
to read /etc/shadow to authenticate, but /etc/shadow can't be read
by non-superuser privilege.
I know, the postmaster is running under "postgres" user privilege,
so PAM auth will always cause 'permission denied' around /etc/shadow.
How can I solve this? Any ideas?
Thanks.
--
NAGAYASU Satoshi <nagayasus(at)nttdata(dot)co(dot)jp>
Phone: +81-3-3523-8122
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Simon Riggs | 2006-06-20 08:44:52 | Re: sync_file_range() |
| Previous Message | Dave Page | 2006-06-20 08:09:55 | Re: CVS HEAD busted on Windows? |