[gentoo-user] root can't login on console, but can ssh... - gentoo-user

From:	Daevid Vincent <daevid@××××××.com>
To:	gentoo-user@l.g.o
Subject:	[gentoo-user] root can't login on console, but can ssh...
Date:	Tue, 17 Jul 2007 22:56:08
Message-Id:	`BRAKAEHhGDyjVA79cZZ00003e5f@mx1.lockdownnetworks.com`

1

I have a LAMP development VMWare setup so that I can login as root sans

2

password. 

3

4

This was working fine until something recently changed that. 

5

It doesn't even prompt for the password, it just timesout after 60

6

seconds.

7

8

Oddly I can ssh in as root (without the password as expected).

9

10

I have my "daevid" account without password and that logs in fine on the

11

console and ssh.

12

13

I can circumvent this behaviour by logging in as 'daevid', then 'sudo su

14

-' (which doesn't prompt for pw either), but I'd like it to work the way

15

it did.

16

17

Perhaps it was some PAM thing? Or login.defs? Or in pam.d/ ?

18

19

LAMP pam.d # cat login 

20

#%PAM-1.0

21

22

auth       required     pam_securetty.so

23

auth       required     pam_tally.so file=/var/log/faillog onerr=succeed

24

no_magic_root

25

auth       required     pam_shells.so

26

auth       required     pam_nologin.so

27

auth       include      system-auth

28

29

account    required     pam_access.so

30

account    include      system-auth

31

account    required     pam_tally.so deny=0 file=/var/log/faillog

32

onerr=succeed no_magic_root

33

34

password   include      system-auth

35

36

session    required     pam_env.so

37

session    optional     pam_lastlog.so

38

session    optional     pam_motd.so motd=/etc/motd

39

session    optional     pam_mail.so

40

41

# If you want to enable pam_console, uncomment the following line

42

# and read carefully README.pam_console in /usr/share/doc/pam*

43

#session    optional    pam_console.so

44

45

session    include      system-auth

46

47

48

LAMP ~ # cat /etc/securetty    

49

# /etc/securetty: list of terminals on which root is allowed to login.

50

# See securetty(5) and login(1).

51

console

52

pts/0

53

pts/1

54

pts/2

55

pts/3

56

pts/4

57

pts/5

58

pts/6

59

pts/7

60

pts/8

61

vc/0

62

vc/1

63

vc/2

64

vc/3

65

vc/4

66

vc/5

67

vc/6

68

vc/7

69

vc/8

70

vc/9

71

vc/10

72

vc/11

73

vc/12

74

tty0

75

tty1

76

tty2

77

tty3

78

tty4

79

tty5

80

tty6

81

tty7

82

tty8

83

tty9

84

tty10

85

tty11

86

tty12

87

tts/0

88

ttyS0

89

90

91

ÐÆ5ÏÐ 

92

93

94

--

95

gentoo-user@g.o mailing list

1	I have a LAMP development VMWare setup so that I can login as root sans
2	password.
3
4	This was working fine until something recently changed that.
5	It doesn't even prompt for the password, it just timesout after 60
6	seconds.
7
8	Oddly I can ssh in as root (without the password as expected).
9
10	I have my "daevid" account without password and that logs in fine on the
11	console and ssh.
12
13	I can circumvent this behaviour by logging in as 'daevid', then 'sudo su
14	-' (which doesn't prompt for pw either), but I'd like it to work the way
15	it did.
16
17	Perhaps it was some PAM thing? Or login.defs? Or in pam.d/ ?
18
19	LAMP pam.d # cat login
20	#%PAM-1.0
21
22	auth required pam_securetty.so
23	auth required pam_tally.so file=/var/log/faillog onerr=succeed
24	no_magic_root
25	auth required pam_shells.so
26	auth required pam_nologin.so
27	auth include system-auth
28
29	account required pam_access.so
30	account include system-auth
31	account required pam_tally.so deny=0 file=/var/log/faillog
32	onerr=succeed no_magic_root
33
34	password include system-auth
35
36	session required pam_env.so
37	session optional pam_lastlog.so
38	session optional pam_motd.so motd=/etc/motd
39	session optional pam_mail.so
40
41	# If you want to enable pam_console, uncomment the following line
42	# and read carefully README.pam_console in /usr/share/doc/pam*
43	#session optional pam_console.so
44
45	session include system-auth
46
47
48	LAMP ~ # cat /etc/securetty
49	# /etc/securetty: list of terminals on which root is allowed to login.
50	# See securetty(5) and login(1).
51	console
52	pts/0
53	pts/1
54	pts/2
55	pts/3
56	pts/4
57	pts/5
58	pts/6
59	pts/7
60	pts/8
61	vc/0
62	vc/1
63	vc/2
64	vc/3
65	vc/4
66	vc/5
67	vc/6
68	vc/7
69	vc/8
70	vc/9
71	vc/10
72	vc/11
73	vc/12
74	tty0
75	tty1
76	tty2
77	tty3
78	tty4
79	tty5
80	tty6
81	tty7
82	tty8
83	tty9
84	tty10
85	tty11
86	tty12
87	tts/0
88	ttyS0
89
90
91	ÐÆ5ÏÐ
92
93
94	--
95	gentoo-user@g.o mailing list

Gentoo Archives: gentoo-user