Re: [squid-users] PAM authentication problem

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Wed, 5 Dec 2001 15:30:22 +0100

The Squid pam_auth installation instructions:

 * Install instructions:
 *
 * This program authenticates users against a PAM configured authentication
 * service "squid". This allows you to authenticate Squid users to any
 * authentication source for which you have a PAM module. Commonly available
 * PAM modules includes "UNIX", RADIUS, Kerberos and SMB, but a lot of other
 * PAM modules are available from various sources.
 *
 * Example PAM configuration for standard UNIX passwd authentication:
 * /etc/pam.conf:
 * squid auth required /lib/security/pam_unix.so.1
 * squid account required /lib/security/pam_unix.so.1
 *
 * Note that some PAM modules (for example shadow password authentication)
 * requires the program to be installed suid root, or PAM will not allow
 * it to authenticate other users than it runs as (this is a security
 * limitation of PAM to avoid automated probing of passwords).

Regards
Henrik Nordström

On Wednesday 05 December 2001 14.23, Jatin Nansi wrote:
> Hi,
>
> I am trying to authenticate my users against PAM.
> i am using pam_auth that comes with squid itself (no modifications).
>
> the problem is that pam_auth returns ERR all the time when run by
> squid. i have marked it mode 4755. when i run it as root / other
> interactive users, i dont have problems.
>
> I have checked this by ps axu.
> when it is run by squid, the user is squid. whereis when run by any other
> user / root the uid for pam_auth is root.
>
> i really dont understand this. where am i going wrong??
>
> Jatin

-- 
MARA Systems AB
Giving you basic free Squid support
Priority support or Squid enhancements available on request
Received on Wed Dec 05 2001 - 07:29:49 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:05:14 MST