[OpenAFS] PAM-AFS isn't working with openssh-3.7.1p1 (sun4x_58)
John Tang Boyland
boyland@solomons.cs.uwm.edu
Thu, 18 Sep 2003 10:58:35 -0500
] Perchance did you do something like run sshd in one of your existing PAGs?
Yes, that would explain that behavior.
So I have rebooted the machine so sshd starts outside of a PAG.
But I still have the basic problem that ssh apparently uses PAM enough that
it uses my AFS password to log me on, but doesn't get a PAG, or
retain the AFS keys: (Presumably the tokens were allocated for a new
PAG, but then the new PAG was lost. In my experience with CDE session
problems, this is caused by "incorrect" usage of PAM: the
authentication is done in a sub-process. Any change the openssh people
will be sympathetic to this problem?)
John
pabst.cs 5 % groups
33536 32512 boyland cs252 cs252ta cs654 cs654ta cs754 cs754ta cs790ta cs552 cs552ta CSfac
pabst.cs 6 % tokens
Tokens held by the Cache Manager:
User's (AFS ID 920) tokens for afs@cs.uwm.edu [Expires Sep 19 12:16]
--End of list--
pabst.cs 7 % ssh pabst.cs.uwm.edu
Password:
Last login: Thu Sep 18 10:51:51 2003 from pabst.cs.uwm.ed
Sun Microsystems Inc. SunOS 5.8 Generic February 2000
Sun Microsystems Inc. SunOS 5.8 Generic February 2000
You have new mail.
pabst.cs 1 % tokens
Tokens held by the Cache Manager:
--End of list--
pabst.cs 2 % groups
boyland cs252 cs252ta cs654 cs654ta cs754 cs754ta cs790ta cs552 cs552ta CSfac
pabst.cs 3 %