[rsbac] problem with RSBAC - UM

Andrew Dobbie adobbie at cims.carleton.ca
Wed Mar 28 04:17:49 CEST 2007


I've never seen a Linux distro that shipped with /usr/local/lib in
the /etc/ld.so.conf (or ld.so.conf.d). If you're installing 3rd party
software such as RSBAC for system use you'll probably want to
add /usr/local/lib to the search path for ld.

On Tue, 2007-27-03 at 13:36 +0100, Bartosz Brodecki wrote:
> Dnia wtorek, 27 marca 2007 14:15, Amon Ott napisał:
> > On Tuesday 27 March 2007 13:41, Bartosz Brodecki wrote:
> > > I want to use rsbac UM module, but when I install this with
> > > instruction I may login, change password, but system doesn't see
> > > username and group name, for example:
> > > when I wrote: "whoami" I get: "whoami: connot find name for user ID
> > > 1000"
> > >
> > > my config files:
> > > ---- nsswitch.conf -------
> > > passwd: rsbac
> > > group: rsbac
> > > shadow: rsbac
> > >
> > > hosts: files
> > > etc.
> > > ------------------------------
> > > ---- /etc/pam.d/common-auth ------------------
> > > auth	required		pam_env.so
> > > auth	required		pam_rsbac.so
> > > ---------------------------------------------
> > > and so on - when I have pam_unix2.so I wrote pam_rsbac.so
> >
> > This looks ok. You should enable UM debugging with
> > echo "debug aef_um 1" >/proc/rsbac-info/debug
> this help
> 
> > to get more info. Also, the output of "rsbac_usershow 1000" might
> > help.
> >
> > Are you sure that nsswitch.conf is used by your programs? It looks as
> > if pam was working, but nss not. Where is your libnss_rsbac.so? If it
> > is in /usr/local/lib, you might be missing that dir in
> > your /etc/ld.so.conf.
> yes, this libraries was in /usr/local/lib and is strage but when I copy them 
> to /lib it works
> 
> thanks,
> 
> Bartek
> _______________________________________________
> rsbac mailing list
> rsbac at rsbac.org
> http://www.rsbac.org/mailman/listinfo/rsbac




More information about the rsbac mailing list