From darius@midget.dons.net.au  Fri Aug 15 05:29:43 2008
Return-Path: <darius@midget.dons.net.au>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id E0A39106566B
	for <FreeBSD-gnats-submit@freebsd.org>; Fri, 15 Aug 2008 05:29:43 +0000 (UTC)
	(envelope-from darius@midget.dons.net.au)
Received: from ipmail01.adl6.internode.on.net (ipmail01.adl6.internode.on.net [203.16.214.146])
	by mx1.freebsd.org (Postfix) with ESMTP id 568098FC0A
	for <FreeBSD-gnats-submit@freebsd.org>; Fri, 15 Aug 2008 05:29:43 +0000 (UTC)
	(envelope-from darius@midget.dons.net.au)
Received: from ppp121-45-88-193.lns10.adl6.internode.on.net (HELO midget.dons.net.au) ([121.45.88.193])
  by ipmail01.adl6.internode.on.net with ESMTP; 15 Aug 2008 14:44:25 +0930
Received: from midget.dons.net.au (localhost [127.0.0.1])
	by midget.dons.net.au (8.14.3/8.14.2) with ESMTP id m7F5EF1s043946
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <FreeBSD-gnats-submit@freebsd.org>; Fri, 15 Aug 2008 14:44:16 +0930 (CST)
	(envelope-from darius@midget.dons.net.au)
Received: (from darius@localhost)
	by midget.dons.net.au (8.14.3/8.14.2/Submit) id m7F5EFbY043945;
	Fri, 15 Aug 2008 14:44:15 +0930 (CST)
	(envelope-from darius)
Message-Id: <200808150514.m7F5EFbY043945@midget.dons.net.au>
Date: Fri, 15 Aug 2008 14:44:15 +0930 (CST)
From: "Daniel J. O'Connor" <darius@dons.net.au>
Reply-To: "Daniel J. O'Connor" <darius@dons.net.au>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: pam_nologin in auth causes log spam
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         126546
>Category:       bin
>Synopsis:       pam_nologin(8) in auth causes log spam
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    des
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Fri Aug 15 05:30:00 UTC 2008
>Closed-Date:    
>Last-Modified:  Fri Aug 15 06:31:10 UTC 2008
>Originator:     Daniel O'Connor
>Release:        FreeBSD 8.0-CURRENT i386
>Organization:
>Environment:
System: FreeBSD inchoate.localdomain 8.0-CURRENT FreeBSD 8.0-CURRENT #3: Thu Feb 7 15:35:09 CST 2008 root@inchoate.localdomain:/usr/src/sys/i386/compile/INCHOATE i386


>Description:
>How-To-Repeat:
SSH in, read /var/log/messages and see..
Aug 10 14:14:42 inchoate sshd[9432]: in openpam_dispatch(): pam_nologin.so: no pam_sm_setcred()

>Fix:
I am not sure if the correct approach is to remove pam_nologin from auth or to patch
it like so..
cvs diff: Diffing .
Index: pam_nologin.c
===================================================================
RCS file: /usr/CVS-Repository/src/lib/libpam/modules/pam_nologin/pam_nologin.c,v
retrieving revision 1.13
diff -u -r1.13 pam_nologin.c
--- pam_nologin.c       14 Jun 2007 13:07:06 -0000      1.13
+++ pam_nologin.c       10 Aug 2008 04:48:21 -0000
@@ -46,6 +46,7 @@
 #include <stdlib.h>
 #include <unistd.h>

+#define PAM_SM_AUTH
 #define PAM_SM_ACCOUNT

 #include <security/pam_appl.h>
@@ -124,4 +125,20 @@
        return (PAM_AUTH_ERR);
 }

+PAM_EXTERN int
+pam_sm_setcred(pam_handle_t * pamh __unused, int flags __unused,
+    int argc __unused, const char *argv[] __unused)
+{
+
+        return (PAM_SUCCESS);
+}
+
+PAM_EXTERN int
+pam_sm_authenticate(pam_handle_t *pamh __unused, int flags __unused,
+    int argc __unused, const char *argv[] __unused)
+{
+       return (PAM_SUCCESS);
+}
+
+
 PAM_MODULE_ENTRY("pam_nologin");

>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->des 
Responsible-Changed-By: remko 
Responsible-Changed-When: Fri Aug 15 06:19:20 UTC 2008 
Responsible-Changed-Why:  
Over to maintainer. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=126546 
>Unformatted:
