[Samba] Advice on: sshd[28182]: PAM pam_set_item: NULL pam
handlepassed
Andrew Bartlett
abartlet at pcug.org.au
Sat Feb 16 13:53:16 GMT 2002
Mark Cooke wrote:
>
> Hi,
>
> Ive got winbind and samba working great (version 2.2.3) on our RH 7.1 box's.
> But as we have about 200 users on our domain, we want to restrict ssh
> access on our linux box's.
> So I created a group on the NT PDC called: Winbind
> In this group, Ive only put our developers and us, the sy admins.
>
> In the /etc/ssh/sshd_config, I entered the line: AllowGroups MMEBS+Winbind.
>
> Thus, allowing sshd to only allowing access to the people in that
> particular group, whilst not affecting the users who browse the box via
> network neighborhood.
>
> But this seemed to work fine for a few hrs and now no one in the Winbind
> group can login to ssh.
>
> Looking thru the /var/log/secure, Iam getting the error:
>
> Feb 15 10:21:27 yoda sshd[28182]: PAM pam_set_item: NULL pam handle passed
> Feb 15 10:21:27 yoda sshd[28182]: PAM pam_set_item: NULL pam handle passed
This basic error has now been 'corrected' in OpenSSH (I'm still debating
it a little however). As to weird behaviour with winbind users - I
wouldn't be supprised if there is some bug in there somewhere, I'm
getting odd behaviour with my LDAP users...
Andrew Bartlett
--
Andrew Bartlett abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet at samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net
More information about the samba
mailing list