Solaris 8 compat mode

Greene Jason-RB512C RB512C at
Thu Feb 6 12:50:36 EST 2003


  Thanks for the response.  Unfortunately the '--with-pam' did not change the behavior.  I put debug in the pam.conf file but it did not produce any output in /var/adm/messages.

login   auth required   /usr/lib/security/$ISA/
login   auth required   /usr/lib/security/$ISA/
rlogin  auth sufficient /usr/lib/security/$ISA/
rlogin  auth required   /usr/lib/security/$ISA/
dtlogin auth required   /usr/lib/security/$ISA/
rsh     auth required   /usr/lib/security/$ISA/
other   auth required   /usr/lib/security/$ISA/    debug

Any other thoughts???



-----Original Message-----
From: Aaron Spangler [mailto:as at]
Sent: Wednesday, February 05, 2003 9:07 PM
To: sudo-users at; Jason Greene
Subject: Re: Solaris 8 compat mode

Try compiling using '--with-pam'.  This tells sudo to invoke the default system behavior.  (Which by default on Solaris 8 if you don't modify /etc/pam.conf tells it to call which tells it to act like /bin/login, /bin/su, etc.)  BTW on any
Solaris you should not need to modify /etc/pam.conf unless you want to change the way the system behaves.  (regardless of nsswitch.conf  or compat mode)

That should do the trick.
 - Aaron

> From: Greene Jason-RB512C <RB512C at>
> Subject: Solairs 8 compat mode
> Hello All,
> I am having an issue using sudo in (NIS) compat mode on solaris 8.
> I currently have several solaris 2.6 machines in this configuration that work.  The passwd file has entries for the users I want to allow on the machine.
> /etc/passwd
> +rb512c
> +:x:::::/bin/false
> /etc/nsswitch.conf
> passwd: compat
> group: compat
> Sudo works perfect on solaris 2.6 with this setup.  But on solaris 8, sudo will never accept the valid password.  If I change /etc/nsswitch.conf back to "passwd: files nis" then sudo works fine, but I do not get the restricted login I am looking for.
> I'm I way off here?  Should I be looking into pam modules now?  I cannot seem to find this problem searching the web.
> Thanks in advance,
> --
> Jason Greene (rb512c)

More information about the sudo-users mailing list