Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 43351 - i cant su to root
Summary: i cant su to root
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: [OLD] Unspecified (show other bugs)
Hardware: x86 Linux
: Highest major (vote)
Assignee: PAM Gentoo Team (OBSOLETE)
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2004-02-29 23:13 UTC by mike <loft306>
Modified: 2004-03-06 17:15 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description mike <loft306> 2004-02-29 23:13:07 UTC 
yes the user is a member of wheel;  the permissions on /bin/su are: -rwsr-xr-x   root rootand here is a part of /var/log/messages:  Feb 28 17:50:22 loft306 via_audio: ignoring drain playback error -11
Feb 28 17:50:37 loft306 unix_chkpwd[2758]: check pass; user unknown
Feb 28 17:50:37 loft306 su(pam_unix)[2757]: authentication failure; logname= uid=1000 euid=1000 tty=pts/0 ruser=taz rhost=  user=root
Feb 28 17:50:40 loft306 su[2757]: pam_authenticate: Authentication failure
Feb 28 17:50:57 loft306 via_audio: ignoring drain playback error -11
Feb 28 17:50:57 loft306 kde(pam_unix)[2609]: session closed for user taz
Feb 28 17:50:59 loft306 kdm_greet[2840]: Can't open default user face
Feb 28 17:51:11 loft306 kde(pam_unix)[2838]: session opened for user tazzy by (uid=0)
Feb 28 17:51:30 loft306 via_audio: ignoring drain playback error -11
Feb 28 17:51:30 loft306 via_audio: ignoring drain playback error -11
Feb 28 17:51:55 loft306 unix_chkpwd[3021]: check pass; user unknown
Feb 28 17:51:55 loft306 su(pam_unix)[3020]: authentication failure; logname= uid=1001 euid=1001 tty=pts/0 ruser=tazzy rhost=  user=root
Feb 28 17:51:57 loft306 su[3020]: pam_authenticate: Authentication failure
Feb 28 17:52:07 loft306 unix_chkpwd[3023]: check pass; user unknown
Feb 28 17:52:07 loft306 su(pam_unix)[3022]: authentication failure; logname= uid=1001 euid=1001 tty=pts/0 ruser=tazzy rhost=  user=root
Feb 28 17:52:09 loft306 su[3022]: pam_authenticate: Authentication failure
Feb 28 17:52:21 loft306 via_audio: ignoring drain playback error -11
Feb 28 17:52:21 loft306 kde(pam_unix)[2838]: session closed for user tazzy
Feb 28 17:52:23 loft306 kdm_greet[3103]: Can't open default user face
Feb 28 17:52:34 loft306 kde(pam_unix)[3101]: session opened for user root by (uid=0)
Feb 28 17:52:36 loft306 via_audio: ignoring drain playback error -11


 if u need anything more please ask
Comment 1 Martin Holzer (RETIRED) gentoo-dev 2004-02-29 23:14:09 UTC 
did you try to type the password of your current accout and root ?
Comment 2 mike <loft306> 2004-03-01 01:10:45 UTC 
i dont understand the question........or would the ansawer be why would i do that?

i type: su    or su root   or su username  hit return
then type the aproprate password for who i want to switch to then i hit return

and get this:Authentication failed
sorry.
Comment 3 mike <loft306> 2004-03-01 01:15:12 UTC 
also the only way that i can go root is to log in as root.

also this happens in x and not in x 
also this instalation is 2 days old and the problem developed before i installed kde, though i did not reconize it as such at that time.
Comment 4 Martin Holzer (RETIRED) gentoo-dev 2004-03-01 01:17:46 UTC 
just try the passwort of your current account when doing #su
Comment 5 mike <loft306> 2004-03-01 01:24:08 UTC 
oh and my buddy tells me u have a new v of gen kernel on the server and the old one was bad...could that of borked me all up ...eventhough we removed the genkernel kernel and unmerged genkernel and built a kern manualy from genkernel-sources...just thought i'd ask
Comment 6 mike <loft306> 2004-03-01 01:28:47 UTC 
current user pw do anything same error
Comment 7 mike <loft306> 2004-03-01 01:33:21 UTC 
current user pw didnt do anything same error
Comment 8 mike <loft306> 2004-03-01 01:37:16 UTC 
in #5 that would be gentoo-sources
Comment 9 Robin Johnson archtester Gentoo Infrastructure gentoo-dev Security 2004-03-01 11:21:39 UTC 
include the output of 'id taz', 'id tazzy'
from a NEW session (eg logged out and then in again).
Comment 10 mike <loft306> 2004-03-01 23:12:57 UTC 
             taz
Mar  2 00:16:05 loft306 kdm_greet[2235]: Can't open default user face
Mar  2 00:16:16 loft306 kde(pam_unix)[2233]: session opened for user taz by (uid=0)
Mar  2 00:16:18 loft306 via_audio: ignoring drain playback error -11
Mar  2 00:16:18 loft306 via_audio: ignoring drain playback error -11
Mar  2 00:17:28 loft306 via_audio: ignoring drain playback error -11
Mar  2 00:25:40 loft306 via_audio: ignoring drain playback error -11
Mar  2 00:25:40 loft306 kde(pam_unix)[2233]: session closed for user taz

                    tazzy
Mar  2 00:30:17 loft306 kdm_greet[2596]: Can't open default user face
Mar  2 00:30:28 loft306 kde(pam_unix)[2592]: session opened for user tazzy by (uid=0)
Mar  2 00:30:30 loft306 via_audio: ignoring drain playback error -11
Mar  2 00:30:30 loft306 via_audio: ignoring drain playback error -11
Mar  2 00:30:59 loft306 via_audio: ignoring drain playback error -11
Mar  2 00:30:59 loft306 kde(pam_unix)[2592]: session closed for user tazzy


I also have an ltraco with the '-p' option if u want.
Comment 11 mike <loft306> 2004-03-01 23:14:07 UTC 
the ltrace is of the su'ing
Comment 12 Robin Johnson archtester Gentoo Infrastructure gentoo-dev Security 2004-03-01 23:20:45 UTC 
please include the output I requested.
Comment 13 mike <loft306> 2004-03-01 23:34:52 UTC 
 Also another place that the passwords dont work at is if i lock the screen as a user... then i cant get back in...however if i do it as root then i can get back in.
Comment 14 mike <loft306> 2004-03-01 23:39:22 UTC 
where do i find what you requested?
Comment 15 Robin Johnson archtester Gentoo Infrastructure gentoo-dev Security 2004-03-01 23:44:38 UTC 
just run 'id taz' and 'id tazzy'
and include the output.
it's best to do this at a NEW login (looping back via ssh to your machine is fine).
Comment 16 mike <loft306> 2004-03-01 23:50:36 UTC 
bash-2.05b$ id taz
uid=1000(taz) gid=100(users) groups=100(users),10(wheel),18(audio),250(portage)
bash-2.05b$ id tazzy
uid=1001(tazzy) gid=100(users) groups=100(users),10(wheel),18(audio)
bash-2.05b$
Comment 17 Robin Johnson archtester Gentoo Infrastructure gentoo-dev Security 2004-03-02 00:06:56 UTC 
looking in your logfile, this line is not familiar to me (I don't have it in any logs on my boxen)
"unix_chkpwd[3021]: check pass; user unknown"

could you include the output of 'qpkg -f /sbin/unix_chkpwd -v' please?
Comment 18 mike <loft306> 2004-03-02 00:27:14 UTC 
bash-2.05b$ 'qpkg -f /sbin/unix_chkpwd -v'
bash: qpkg -f /sbin/unix_chkpwd -v: No such file or directory
bash-2.05b$ qpkg -f /sbin/unix_chkpwd -v
bash: qpkg: command not found
Comment 19 mike <loft306> 2004-03-02 00:34:44 UTC 
bash-2.05b$ ls -l /sbin/unix_chkpwd
-r-sr-xr-x    1 root     root        19000 Nov 28 11:19 /sbin/unix_chkpwd
bash-2.05b$
Comment 20 mike <loft306> 2004-03-02 00:37:10 UTC 
wait i think i have to emerge the gentoolkit?????????????/
Comment 21 mike <loft306> 2004-03-02 00:40:21 UTC 
bash-2.05b$ qpkg -f /sbin/unix_chkpwd -v
sys-libs/pam-0.77 *
bash-2.05b$
Comment 22 mike <loft306> 2004-03-06 17:15:48 UTC 
fixed i reininstalled