Project

General

Profile

Bug #37143

Remove unnecessary pam_sss errors from /var/log/auth.log

Added by Andrew Walker about 2 years ago. Updated about 2 years ago.

Status:
Done
Priority:
No priority
Assignee:
John Hixson
Category:
OS
Target version:
11.1-U6
Seen in:
11.2-BETA1
Severity:
New
Reason for Closing:
Reason for Blocked:
Needs QA:
No
Needs Doc:
No
Needs Merging:
No
Needs Automation:
No
Support Suite Ticket:
VYJ-392-56686
Hardware Configuration:
ChangeLog Required:
No

Description

Part III

Tested on FreeNAS 11.2-Beta 1 system. Issue in initial bug report is still present.

Jun 18 14:59:34 eye-01 afpd50079: authentication failure; logname=root uid=0 euid=0 tty=afpd ruser=smb_user rhost=10.231.1.24 user=smb_user
Jun 18 14:59:42 eye-01 afpd50116: authentication failure; logname=root uid=0 euid=0 tty=afpd ruser=smb_user rhost=10.231.1.24 user=smb_user
Jun 18 14:59:45 eye-01 afpd50149: authentication failure; logname=root uid=0 euid=0 tty=afpd ruser=smb_user rhost=10.231.1.24 user=smb_user
Jun 18 15:01:45 eye-01 afpd51457: authentication failure; logname=root uid=0 euid=0 tty=afpd ruser=smb_user rhost=10.231.1.24 user=smb_user

Steps to reproduce:

================================================
1) Create local user
2) Create time machine share owned by local user
3) Enable LDAP
4) Configure Time Machine backup on OSX client.
5) Monitor /var/log/auth.log for entries like above.

The issue is still present in 11.2, but was masked by a separate bug related to the generation of the /etc/pam.d/netatalk file.

Initially reported in https://redmine.ixsystems.com/issues/31635

Associated revisions

Revision dd82ca1c (diff)
Added by John Hixson about 2 years ago

Make sure pam_sss is quiet when told to be quiet Ticket: #37143

Revision d68339c1 (diff)
Added by John Hixson about 2 years ago

Bump port revision Ticket: #37143

Revision f218daeb (diff)
Added by John Hixson about 2 years ago

Bump port revision Ticket: #37143

Revision a3ad9804 (diff)
Added by John Hixson about 2 years ago

Make sure pam_sss is quiet when told to be quiet Ticket: #37143

Revision 48d8aadd (diff)
Added by John Hixson about 2 years ago

Make sure pam_sss is quiet when told to be quiet Ticket: #37143

Revision bd5430d2 (diff)
Added by John Hixson about 2 years ago

Make sure pam_sss is quiet when told to be quiet Ticket: #37143

Revision 8dcae62b (diff)
Added by John Hixson about 2 years ago

Make sure pam_sss is quiet when told to be quiet Ticket: #37143

Revision 9e81818f (diff)
Added by John Hixson almost 2 years ago

Make sure pam_sss is quiet when told to be quiet Ticket: #37143

Revision db74f6c8 (diff)
Added by John Hixson over 1 year ago

Make sure pam_sss is quiet when told to be quiet Ticket: #37143

History

#1 Updated by Dru Lavigne about 2 years ago

  • Assignee changed from Release Council to John Hixson

#2 Updated by John Hixson about 2 years ago

Fixed. Master PR https://github.com/freenas/ports/pull/121. The last remaining message was one that was being printed out rather login was successful or not. I have made it disappear if quiet is specified or an unknown user tries to login. Maybe the 2nd isn't necessary, but let's be extra paranoid ;-)

#3 Updated by John Hixson about 2 years ago

  • Status changed from Unscreened to Ready for Testing

#4 Updated by Dru Lavigne about 2 years ago

  • Subject changed from Correct PAM constants for AFP users authenticating as local user in LDAP environment to Remove unnecessary pam_sss errors from /var/log/auth.log
  • Target version changed from Backlog to 11.2-BETA2
  • Needs Doc changed from Yes to No
  • Needs Merging changed from Yes to No

#5 Updated by Bonnie Follweiler about 2 years ago

  • Status changed from Ready for Testing to Passed Testing
  • Needs QA changed from Yes to No

Test Passed in FreeNAS-11.2-MASTER-201807160837
(Build Date: Jul 16, 2018 11:40)

#6 Updated by Dru Lavigne about 2 years ago

  • Status changed from Passed Testing to Done

#7 Updated by Dru Lavigne about 2 years ago

  • Status changed from Done to Ready for Testing
  • Target version changed from 11.2-BETA2 to 11.1-U6
  • Needs QA changed from No to Yes

#9 Updated by Bonnie Follweiler about 2 years ago

  • Status changed from Ready for Testing to Passed Testing
  • Needs QA changed from Yes to No

Test passed in Freenas 11.1-U6

#10 Updated by Dru Lavigne about 2 years ago

  • Status changed from Passed Testing to Done

Also available in: Atom PDF