/var/log/messages
작성자 정보
- 강태원 작성
- 작성일
컨텐츠 정보
- 1,614 조회
- 0 추천
- 목록
본문
설정한 파일과 질문을 다시 올립니다. (설정한 파일은 맨 아래에 있습니다.)
정확히 좀 봐 주시기를 부탁드립니다.
/etc/pam.d/su 파일 설정 후 /var/log/messages 파일에 남은 기록인데요...
access denied 나 access granted ... 이란 문구는 없고
아래에 보면
Apr 10 13:53:55 www PAM-Wheel[4336]: pam_parse: unknown option; allow
이란 것이 나옵니다.
이것은 에러가 아닌지요???
Apr 10 13:44:43 www sshd(pam_unix)[4206]: session opened for user heart by (uid=0)
Apr 10 13:44:55 www su(pam_unix)[4244]: session opened for user root by heart(uid=500)
Apr 10 13:52:39 www su(pam_unix)[4244]: session closed for user root
Apr 10 13:52:45 www sshd(pam_unix)[4206]: session closed for user heart
Apr 10 13:53:51 www sshd(pam_unix)[4298]: session opened for user heart by (uid=0)
Apr 10 13:53:55 www PAM-Wheel[4336]: pam_parse: unknown option; allow
Apr 10 13:54:03 www su(pam_unix)[4336]: session opened for user root by heart(uid=500)
Apr 10 13:54:24 www su(pam_unix)[4336]: session closed for user root
Apr 10 13:54:27 www sshd(pam_unix)[4298]: session closed for user heart
Apr 10 13:54:41 www sshd(pam_unix)[4383]: session opened for user jungkang by (uid=0)
Apr 10 13:54:54 www PAM-Wheel[4421]: pam_parse: unknown option; allow
Apr 10 13:55:16 www PAM-Wheel[4422]: pam_parse: unknown option; allow
Apr 10 13:55:33 www PAM-Wheel[4423]: pam_parse: unknown option; allow
Apr 10 13:55:52 www sshd(pam_unix)[4383]: session closed for user jungkang
Apr 10 13:56:16 www sshd(pam_unix)[4425]: session opened for user heart by (uid=0)
Apr 10 13:56:22 www PAM-Wheel[4463]: pam_parse: unknown option; allow
Apr 10 13:56:27 www su(pam_unix)[4463]: session opened for user root by heart(uid=500)
Apr 10 13:57:20 www su(pam_unix)[4463]: session closed for user root
Apr 10 13:57:29 www PAM-Wheel[4512]: pam_parse: unknown option; allow
Apr 10 13:57:35 www su(pam_unix)[4512]: session opened for user root by heart(uid=500)
다음은 제 서버의 /etc/pam.d/su 파일의 내용입니다.
원본파일에서 파란색 부분을 추가 했습니다.
#%PAM-1.0
auth sufficient /lib/security/pam_rootok.so
# Uncomment the following line to implicitly trust users in the "wheel" group.
#auth sufficient /lib/security/pam_wheel.so trust use_uid
auth required /lib/security/pam_wheel.so allow group=wheel
# Uncomment the following line to require a user to be in the "wheel" group.
#auth required /lib/security/pam_wheel.so use_uid
auth required /lib/security/pam_stack.so service=system-auth
account required /lib/security/pam_stack.so service=system-auth
password required /lib/security/pam_stack.so service=system-auth
session required /lib/security/pam_stack.so service=system-auth
session optional /lib/security/pam_xauth.so
관련자료
-
이전
-
다음
