1 |
"Mark Haney" <mhaney@××××××××××××.org> posted |
2 |
451BEFB2.6090303@××××××××××××.org, excerpted below, on Thu, 28 Sep 2006 |
3 |
11:52:18 -0400: |
4 |
|
5 |
> This might be a bit off topic, but I'm at my wits' end. I have a server |
6 |
> that uses PAM/LDAP for authentication. A recent update broke PAM and |
7 |
> took me a couple of days to fix. But now, when I ssh into the box, I |
8 |
> get no output from any commands. su,ls,cat all just return to the |
9 |
> prompt without showing me any output. I can env and echo fine and tab |
10 |
> completion works, so I know the shell is okay. I just don't have any |
11 |
> clue on what to try next. |
12 |
|
13 |
I don't do remote admin so have no direct experience, but I've read of two |
14 |
issues you might be running into. |
15 |
|
16 |
1) Apparently it is or has been default to build stage-3 and GRP packages |
17 |
with USE=acl. People who turn that flag off and do an emerge --depclean |
18 |
without doing an emerge --newuse first end up breaking their system, |
19 |
because all the ordinary utilities are built against access control list |
20 |
libraries and a depclean removes them, leaving non-functional binaries. |
21 |
That's why there's the BIG BIG WARNING about using depclean without doing |
22 |
an emerge --newuse (and preferrably a revdep-rebuild both before and |
23 |
after, just to be sure) first. Unfortunately, there are a LOT of people |
24 |
who can't seem to read warnings, even BIG BIG warnings, that end up with |
25 |
broken systems. |
26 |
|
27 |
2) There was a recent authentication issue where LDAP based remote |
28 |
authentication and access was in use. Apparently, it was a problem of |
29 |
trying to authenticate a user in LDAP before the network was up to do so. |
30 |
This caused VERY SLOW boots, and altho I'm not aware of it causing your |
31 |
issue directly, it's possible it could be related. Part of the fix was to |
32 |
ensure all necessary boot accounts could be authenticated locally, not |
33 |
just over the network using LDAP -- IOW ensure there are entries in |
34 |
the local passwd and group files as appropriate, and that the UID/GID |
35 |
align with what is expected. |
36 |
|
37 |
More than that, you'll probably need to get help from someone with more |
38 |
direct experience. |
39 |
|
40 |
-- |
41 |
Duncan - List replies preferred. No HTML msgs. |
42 |
"Every nonfree program has a lord, a master -- |
43 |
and if you use the program, he is your master." Richard Stallman |
44 |
|
45 |
-- |
46 |
gentoo-amd64@g.o mailing list |