[sudo-users] AUTHENTICATION ERROR MESSAGES COULD BE FOUND IN /VAR/ADM/MESSAGES
Gyorgy Aszalos
gyorgy.aszalos at gmail.com
Mon Jun 10 04:04:22 MDT 2013
Hello,
Automatic installation of sudo was enabled during update installation, sudo
was updated from 1.7.4p4 to version 1.7.4p6 on Solaris 10 (sparc).
Since this update sudo complains about the missing symbol in the module
pam_login_limit.so.1
"
Oct 8 03:13:55 fxsnsrm1n1 sudo: [ID 702911 auth.notice] rtp99 :
TTY=unknown ; PWD=/export/home/rtp99 ; USER=root ;
COMMAND=/opt/SUNWstkcam/bin/sscs list alarm
Oct 8 03:13:55 fxsnsrm1n1 sudo[23909]: [ID 401707 auth.error] open_module:
/usr/lib/security/pam_login_limit.so.1 failed: ld.so.1: sudo: fatal:
relocation error: file /usr/lib/security/pam_login_limit.so.1: symbol main:
referenced symbol not found
Oct 8 03:13:55 fxsnsrm1n1 sudo[23909]: [ID 487707 auth.error]
load_modules: can not open module /usr/lib/security/pam_login_limit.so.1
"
The check of the file /usr/lib/security/pam_login_limit.so.1 which was
noted as incompatible for the start of sudo, is existing and has the
correct permission set.
This problem was neutralised by disabling this module in pam.conf:
(These lines were commented out from /etc/pam_conf
other auth requisite pam_login_limit.so.1 execute_first
timeout_account=30 count_limit=5
other auth required pam_login_limit.so.1 timeout_account=30
count_limit=5)
The problem is reproducible:
Used command:
LD_DEBUG=all,output=sudo-linker.out /usr/local/bin/sudo
/opt/SUNWstkcam/bin/sscs list alarm
Taken from /var/log/authlog:
May 14 11:25:36 fxsnsrm1n1 sudo: [ID 702911 auth.notice] root :
TTY=pts/5 ; PWD=/dump/Indizien/N25186 ; USER=root ;
COMMAND=/opt/SUNWstkcam/bin/sscs list alarm
May 14 11:25:36 fxsnsrm1n1 sudo[22674]: [ID 401707 auth.error] open_module:
/usr/lib/security/pam_login_limit.so.1 failed: ld.so.1: sudo: fatal:
relocation error: file /usr/lib/security/pam_login_limit.so.1: symbol main:
referenced symbol not found
May 14 11:25:36 fxsnsrm1n1 sudo[22674]: [ID 487707 auth.error]
load_modules: can not open module /usr/lib/security/pam_login_limit.so.1
But it is really a special problem of sudo, because sshd has not a problem
with pam_login_limit
Some details:
1.
/usr/local/bin/sudo -V
Sudo version 1.7.4p6
Configure args: --prefix=/usr/local --sysconfdir=/usr/local/etc
--localstatedir=/usr/local/var --with-pam
--with-timedir=/usr/local/var/lib/sudo
Sudoers path: /usr/local/etc/sudoers
Authentication methods: 'pam'
2. The truss commands shows /usr/lib/security/pam_login_limit.so.1 can be
opened:
stat64("/usr/lib/security/pam_login_limit.so.1", 0xFFBFE880) = 0
stat64("/usr/lib/security/pam_login_limit.so.1", 0xFFBFDEA8) = 0
resolvepath("/usr/lib/security/pam_login_limit.so.1",
"/opt/INTPaghar/Files/usr/lib/security/pam_login_limit.so.1", 1023) = 58
open("/usr/lib/security/pam_login_limit.so.1", O_RDONLY) = 6
mmap(0x00010000, 32768, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_ALIGN, 6, 0) =
0xFF2C0000
mmap(0x00010000, 90112, PROT_NONE,
MAP_PRIVATE|MAP_NORESERVE|MAP_ANON|MAP_ALIGN, -1, 0) = 0xFEE20000
mmap(0xFEE20000, 21029, PROT_READ|PROT_EXEC,
MAP_PRIVATE|MAP_FIXED|MAP_TEXT, 6, 0) = 0xFEE20000
mmap(0xFEE34000, 5008, PROT_READ|PROT_WRITE|PROT_EXEC,
MAP_PRIVATE|MAP_FIXED|MAP_INITDATA, 6, 16384) = 0xFEE34000
munmap(0xFEE26000, 57344) = 0
memcntl(0xFEE20000, 7160, MC_ADVISE, MADV_WILLNEED, 0, 0) = 0
close(6)
But the error occurred at this part:
fstat64(2, 0xFFBFE640) = 0
sudowrite(2, " s u d o", 4) = 4
: write(2, " : ", 2) = 2
pam_authenticate: Dlopen failurewrite(2, " p a m _ a u t h e n t i"..,
32) = 32
write(2, "\n", 1)
3.
uname -a
SunOS fxsnsrm1n1 5.10 Generic_147440-10 sun4v sparc SUNW,T5240
Note:
1. The error message does not come with 1.7.4p4 (with older sudo version).
2. The problem can be reproduced with the latest sudo versions as well:
1.8.1p2-sol10 and sudo-1.8.6p8
How could we avoid this kind of problem (with the newer sudo version)?
Thanks for help.
Regards,
Gyorgy Aszalos
More information about the sudo-users
mailing list