I have just set up a PAM enabled OpenSSH daemon to allow
authentication against an OpenLDAP server. Authentication is working
fine but when I run the last command SSH logins do not have a
terminal or host name listed and the login date is "Wed Dec 31
20:00". A log out time isn't recorded when logging out and last
reports "still logged in". Finger reports all the correct information
so it seems to be getting name service info properly. Does last and
wtmpx not use the OS name service stuff? Has anyone seen this before?
Background:
Solaris 8 kernel 117350-28
OpenLDAP client 2.3.27
LDAP patch 108993-49 (similar behavior experienced with revision 60)
OpenSSH 4.3p1 / OpenSSL 0.9.7f
PAM LDAP module 1.80
NSS LDAP module 2.52
nscd has been restarted, but ldap_cachemgr is not running, I have
read it is not recommended with OpenLDAP, only with Sun's directory
server.
[Full-Disclosure] FreeBSD Security Advisory FreeBSD-SA-03:15.openssh ... For general information regarding FreeBSD Security Advisories,...OpenSSH is a free version of the SSH protocol suite of network ... The ssh2 protocol supports a wide range of authentication... Its challenge / response mechanisms,... (Full-Disclosure)
FreeBSD Security Advisory FreeBSD-SA-03:15.openssh ... For general information regarding FreeBSD Security Advisories,...OpenSSH is a free version of the SSH protocol suite of network ... The ssh2 protocol supports a wide range of authentication... Its challenge / response mechanisms,... (FreeBSD-Security)
[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-03:15.openssh ... For general information regarding FreeBSD Security Advisories,...OpenSSH is a free version of the SSH protocol suite of network ... The ssh2 protocol supports a wide range of authentication... Its challenge / response mechanisms,... (freebsd-announce)
FreeBSD Security Advisory FreeBSD-SA-03:15.openssh ... For general information regarding FreeBSD Security Advisories,...OpenSSH is a free version of the SSH protocol suite of network ... The ssh2 protocol supports a wide range of authentication... Its challenge / response mechanisms,... (Bugtraq)
Re: FreeBSD 7.0, Open LDAP, PAM, TLS and NSS, howto? ... Obviously, this did not work (again: I already installed successfully OpenLDAP, nss_ldap and pam_ldap!). ... The problem at the moment is, when nss_ldap running, login as root on console takes several minutes. ... When logged in on console, I can do a simple slapcatand get a lot of definitions, so tis shows a running and resping OpenLDAP server.... Other tutorials around the web targetting mostly outdated environments (FreeBSD 5.1, older OpenLDAP versions or strange Linux setups). ... (freebsd-questions)
