From nobody@FreeBSD.org  Tue Oct 13 16:43:12 2009
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id F07801065695
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 13 Oct 2009 16:43:12 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [IPv6:2001:4f8:fff6::21])
	by mx1.freebsd.org (Postfix) with ESMTP id DF9868FC15
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 13 Oct 2009 16:43:12 +0000 (UTC)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.14.3/8.14.3) with ESMTP id n9DGhC72083349
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 13 Oct 2009 16:43:12 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.14.3/8.14.3/Submit) id n9DGhCj8083348;
	Tue, 13 Oct 2009 16:43:12 GMT
	(envelope-from nobody)
Message-Id: <200910131643.n9DGhCj8083348@www.freebsd.org>
Date: Tue, 13 Oct 2009 16:43:12 GMT
From: Mauro Vale <maurovale@gmail.com>
To: freebsd-gnats-submit@FreeBSD.org
Subject: After upgrade to pam_pwdfile-0.99 vsftpd doesnt authenticate users
X-Send-Pr-Version: www-3.1
X-GNATS-Notify:

>Number:         139575
>Category:       ports
>Synopsis:       security/pam_pwdfile: after upgrade to pam_pwdfile-0.99 vsftpd doesnt authenticate users
>Confidential:   no
>Severity:       serious
>Priority:       low
>Responsible:    dinoex
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Oct 13 16:50:01 UTC 2009
>Closed-Date:    Fri Jan 15 13:39:41 CET 2010
>Last-Modified:  Fri Jan 15 13:39:41 CET 2010
>Originator:     Mauro Vale
>Release:        7.0p5
>Organization:
>Environment:
ftp.xxxxx 7.1-RELEASE-p5 FreeBSD 7.1-RELEASE-p5 #0: Thu Apr 30 14:36:27 WEST 2009     root@ftp.xxxxx:/usr/obj/usr/src/sys/kernel.xxxxx  i386
>Description:
Hi after port upgrading pam_pwdfile-0.95_1 to pam_pwdfile-0.99, VSFTPD
server can't login ftp users, there is no error in the logs except this one:

Oct 13 15:50:33 ftp vsftpd: in openpam_load_module(): no /usr/local/lib/pam_pwdfile.so found

But if I do a ls -l /usr/local/lib/pam_pwdfile.so the file is there:
-r--r--r--  1 root  wheel  6652 Oct 13 17:30 /usr/local/lib/pam_pwdfile.so

The temporary solution is to downgrade to pam_pwdfile-0.95_1 and
everything works again.
>How-To-Repeat:
Install VSFPTD and pam_pwdfile-0.99

Configure VSFTPD to use virtual users.
>Fix:
No fix only temporary workaround.

Downgrade to pam_pwdfile-0.95_1

>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-ports-bugs->dinoex 
Responsible-Changed-By: linimon 
Responsible-Changed-When: Wed Oct 14 20:35:10 UTC 2009 
Responsible-Changed-Why:  
Fix synopsis and assign. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=139575 
State-Changed-From-To: open->feedback 
State-Changed-By: dinoex 
State-Changed-When: Tue Oct 20 18:59:21 CEST 2009 
State-Changed-Why:  

Is this a problem with ports/security/pam_pwdfile? 
Is vsftpd the only application that can not use this pam_module? 

Please update to vsftd 2.2.1. 
Do you build vsftd with openssl or not? 

From reading the changelog of pam_pwdfile it looks like 
a linker problem with the crypto libs. 


http://www.freebsd.org/cgi/query-pr.cgi?pr=139575 

From: dirk.meyer@dinoex.sub.org (Dirk Meyer)
To: mschout@gkg.net, bug-followup@FreeBSD.org
Cc:  
Subject: Re: ports/139575: security/pam_pwdfile: after upgrade
	to pam_pwdfile-0.99 vsftpd doesnt authenticate users
Date: Thu, 14 Jan 2010 09:43:37 +0100

 Please look into this problem
 http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/139575
 
 There is an regresion in your port security/pam_pwdfile
 
 kind regards Dirk
 
 - Dirk Meyer, Im Grund 4, 34317 Habichtswald, Germany
 - [dirk.meyer@dinoex.sub.org],[dirk.meyer@guug.de],[dinoex@FreeBSD.org]

From: Michael Schout <mschout@gkg.net>
To: bug-followup@FreeBSD.org
Cc:  
Subject: Re: ports/139575: security/pam_pwdfile: after upgrade	to pam_pwdfile-0.99
 vsftpd doesnt authenticate users
Date: Thu, 14 Jan 2010 08:36:15 -0600

 See http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/138483
 
 This problem was fixed there.
 
 Its waiting on for someone with commit access to commit it.  I dont have
 commit access so I cannot commit the fix.  The pam_pwdfile upgrade that
 got committed was broken.  The fix is in the above ticket.
 
 Until someone with commit access commits the fix, there is little else I
 can do.
State-Changed-From-To: feedback->closed 
State-Changed-By: dinoex 
State-Changed-When: Fri Jan 15 13:39:00 CET 2010 
State-Changed-Why:  
Fix is in ports/138483 

http://www.freebsd.org/cgi/query-pr.cgi?pr=139575 
>Unformatted:
