| 1 |
"Mark Haney" <mhaney@××××××××××××.org> posted |
| 2 |
451BEFB2.6090303@××××××××××××.org, excerpted below, on Thu, 28 Sep 2006 |
| 3 |
11:52:18 -0400: |
| 4 |
|
| 5 |
> This might be a bit off topic, but I'm at my wits' end. I have a server |
| 6 |
> that uses PAM/LDAP for authentication. A recent update broke PAM and |
| 7 |
> took me a couple of days to fix. But now, when I ssh into the box, I |
| 8 |
> get no output from any commands. su,ls,cat all just return to the |
| 9 |
> prompt without showing me any output. I can env and echo fine and tab |
| 10 |
> completion works, so I know the shell is okay. I just don't have any |
| 11 |
> clue on what to try next. |
| 12 |
|
| 13 |
I don't do remote admin so have no direct experience, but I've read of two |
| 14 |
issues you might be running into. |
| 15 |
|
| 16 |
1) Apparently it is or has been default to build stage-3 and GRP packages |
| 17 |
with USE=acl. People who turn that flag off and do an emerge --depclean |
| 18 |
without doing an emerge --newuse first end up breaking their system, |
| 19 |
because all the ordinary utilities are built against access control list |
| 20 |
libraries and a depclean removes them, leaving non-functional binaries. |
| 21 |
That's why there's the BIG BIG WARNING about using depclean without doing |
| 22 |
an emerge --newuse (and preferrably a revdep-rebuild both before and |
| 23 |
after, just to be sure) first. Unfortunately, there are a LOT of people |
| 24 |
who can't seem to read warnings, even BIG BIG warnings, that end up with |
| 25 |
broken systems. |
| 26 |
|
| 27 |
2) There was a recent authentication issue where LDAP based remote |
| 28 |
authentication and access was in use. Apparently, it was a problem of |
| 29 |
trying to authenticate a user in LDAP before the network was up to do so. |
| 30 |
This caused VERY SLOW boots, and altho I'm not aware of it causing your |
| 31 |
issue directly, it's possible it could be related. Part of the fix was to |
| 32 |
ensure all necessary boot accounts could be authenticated locally, not |
| 33 |
just over the network using LDAP -- IOW ensure there are entries in |
| 34 |
the local passwd and group files as appropriate, and that the UID/GID |
| 35 |
align with what is expected. |
| 36 |
|
| 37 |
More than that, you'll probably need to get help from someone with more |
| 38 |
direct experience. |
| 39 |
|
| 40 |
-- |
| 41 |
Duncan - List replies preferred. No HTML msgs. |
| 42 |
"Every nonfree program has a lord, a master -- |
| 43 |
and if you use the program, he is your master." Richard Stallman |
| 44 |
|
| 45 |
-- |
| 46 |
gentoo-amd64@g.o mailing list |
Archives