No subject
Tue Dec 13 04:47:59 EST 2011
`joe'
Jun 11 15:45:48 bach su[24927]: pam_krb5: `Operation not permitted'
setting owner of ccache
Jun 11 15:45:48 bach su(pam_unix)[24927]: session opened for user joe
by matt(uid=500)
/etc/pam.d/su:
auth sufficient /lib/security/pam_unix.so shadow md5 nullok
likeauth
auth required /lib/security/pam_krb5.so use_first_pass
account required /lib/security/pam_unix.so
password required /lib/security/pam_cracklib.so
password required /lib/security/pam_unix.so shadow md5
use_authtok nullok
session optional /lib/security/pam_krb5.so
session required /lib/security/pam_unix.so
session optional /lib/security/pam_xauth.so
/etc/pam.d/login:
auth required /lib/security/pam_securetty.so
auth required /lib/security/pam_nologin.so
auth sufficient /lib/security/pam_unix.so shadow md5 nullok
likeauth
auth required /lib/security/pam_krb5.so use_first_pass
account sufficient /lib/security/pam_krb5.so use_first_pass debug
account required /lib/security/pam_unix.so
password required /lib/security/pam_cracklib.so
password sufficient /lib/security/pam_unix.so shadow md5
nullok use_authtok
password required /lib/security/pam_krb5.so
session sufficient /lib/security/pam_unix.so
session required /lib/security/pam_krb5.so
session optional /lib/security/pam_console.so
More information about the Kerberos
mailing list