NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > FreeBSD Security> 2003-03

From: Roman Emelyanov (ersers.msk.ru)
Date: Mon Mar 03 2003 - 10:20:54 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello Martin,

Monday, March 3, 2003, 6:28:38 PM, you wrote:

MM> What might cause all users except root to get "permission denied"
MM> every time they try to change their passwords on a new system?

MM> Here's the scenario:

MM> $ passwd
MM> Changing local password for martin.
MM> Old password:
MM> passwd: Permission denied
MM> passwd: /etc/master.passwd: unchanged
MM> $

MM> I have checked permissions on /etc/master.passwd and
MM> /etc/passwd and they agree with the corresponding files on
MM> another 4.7 system that works.

MM> $ ls -l /etc/*passwd
MM> -rw------- 1 root wheel 1605 Mar 3 08:12 /etc/master.passwd
MM> -rw-r--r-- 1 root wheel 1367 Mar 3 08:12 /etc/passwd
MM> $ cd /
MM> $ ls -l |grep usr
MM> drwxr-xr-x 16 root wheel 512 Nov 11 11:34 usr
MM> $ ls -l /usr/bin/passwd
MM> -r-sr-xr-x 2 root wheel 32504 Oct 9 07:51 /usr/bin/passwd

MM> When I built that system, I installed from a CDROM and
MM> then overlayed some files from an older system for the user
MM> directories including mine. I thought I might have ended up with
MM> a different uid on this system, but that is not the case.

MM> I even tried pwd_mkdb /etc/master.passwd as root which
MM> worked all right, but it didn't fix or change anything. Where
MM> else might I look to figure out what I accidentally did to cause
MM> this problem?

MM> If I ssh to the system from another system and try to use
MM> a password to get in, I also get Permission denied messages.
MM> What really happens is that the first 3 prompts just say
MM> "password:" and then I see "martin's password:" and then I get
MM> denied until I run out of retries.

MM> This system is a server and is doing fine in that
MM> respect. ssh with exchange of public keys and the ability to su
MM> to root is the only way I can get in right now, but that method
MM> works normally. The password permission problem appears to be
MM> the only thing that is broken.

MM> Thank you for any constructive suggestions as I haven't
MM> found anything that looks odd yet.

MM> Martin McCormick WB5AGZ Stillwater, OK
MM> OSU Center for Computing and Information Services Network Operations Group

MM> To Unsubscribe: send mail to majordomoFreeBSD.org
MM> with "unsubscribe freebsd-security" in the body of the message

Check permissions on passwd application:

-r-sr-xr-x 2 root wheel 5840 Jan 16 23:29 /usr/bin/passwd

--
Best regards,
Roman mailto:ersers.msk.ru

To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]