Re: Only root is able to login
m.se...@infracaninophile.co.uk
--liOOAslEiF7prFVr
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Thu, Aug 05, 2004 at 10:20:18AM +0200, Thomas Krause wrote:
> Hello,
> I've a big problem, that only root is able to login to a new FreeBSD 5.2.1
> box. Neither login nor su works. I've no local access to the machine.
> A ftp-login is possible for normal users.
For the sake of the archives, I will point out:
http://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/admin.html#SU-WHEE=
L-GROUP
which is the usual cause of this sort of thing, but apparently not in
this case.
=20
> mdm-online:/ # su - abc
> su: /bin/sh: Permission denied
>=20
> mdm-online:/ # login abc
> Password:
> Copyright (c) 1992-2004 The FreeBSD Project.
> Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
> The Regents of the University of California. All rights reserved.
>=20
> FreeBSD 5.2.1-RELEASE-p9 (MDM-ONLINE) #1: Mon Jul 26 22:24:58 CEST 2004
>=20
> Welcome to FreeBSD!
>=20
> login: /bin/sh: No such file or directory
At a guess: both login(1) and su(1) are meant to be SUID programs:
% ls -la /usr/bin/su /usr/bin/login
-r-sr-xr-x 1 root wheel 21824 Jun 6 14:29 /usr/bin/login*
-r-sr-xr-x 1 root wheel 8200 Jun 6 14:29 /usr/bin/su*
They won't work without that SUID bit. Sounds to me as if someone has
been a bit heavy handed trying to lock down the system. Or else the
system was installed by copying from somewhere else, but using a
method which automatically drops SUID and similar bits.
Cheers,
Matthew
--=20
Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks
Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614 Bucks., SL7 1TH UK
--liOOAslEiF7prFVr
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (FreeBSD)
iD8DBQFBEghPiD657aJF7eIRAvN9AKCjMgB+aFwXpNYBv7uBvGDl281z2QCdFRwi
amH9O2VE1h+DJfNT/UDNAns=
=c9Kg
-----END PGP SIGNATURE-----
--liOOAslEiF7prFVr--
b...@izb.knu.ac.kr
Thu, Aug 05, 2004 at 10:20:18AM +0200
Thomas Krause <f...@chef-ingenieur.de> wrote:
> Hello,
> I've a big problem, that only root is able to login to a new FreeBSD 5.2.1
> box. Neither login nor su works. I've no local access to the machine.
> A ftp-login is possible for normal users.
>
> mdm-online:/ # su - abc
> su: /bin/sh: Permission denied
>
> mdm-online:/ # login abc
> Password:
> Copyright (c) 1992-2004 The FreeBSD Project.
> Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
> The Regents of the University of California. All rights reserved.
>
> FreeBSD 5.2.1-RELEASE-p9 (MDM-ONLINE) #1: Mon Jul 26 22:24:58 CEST 2004
>
> Welcome to FreeBSD!
>
> login: /bin/sh: No such file or directory
>
> mdm-online:/ # ls -l /bin/sh
> -r-xr-xr-x 1 root wheel 753872 Jul 26 10:18 /bin/sh
> mdm-online:/ # pw usershow abc
> abc:*:1003:1003::0:0:User &:/home/abc:/bin/sh
> mdm-online:/ # ls -ld /home/abc
> drwxr-xr-x 2 abc abc 512 Aug 5 09:33 /home/abc
> mdm-online:/ # ls -la /home/abc
> total 20
> drwxr-xr-x 2 abc abc 512 Aug 5 09:33 .
> drwxr-xr-x 7 root wheel 512 Aug 5 09:34 ..
> -rw-r--r-- 1 abc abc 767 Aug 5 09:33 .cshrc
> -rw-r--r-- 1 abc abc 248 Aug 5 09:33 .login
> -rw-r--r-- 1 abc abc 158 Aug 5 09:33 .login_conf
> -rw------- 1 abc abc 373 Aug 5 09:33 .mail_aliases
> -rw-r--r-- 1 abc abc 331 Aug 5 09:33 .mailrc
> -rw-r--r-- 1 abc abc 797 Aug 5 09:33 .profile
> -rw------- 1 abc abc 276 Aug 5 09:33 .rhosts
> -rw-r--r-- 1 abc abc 975 Aug 5 09:33 .shrc
>
> I've not modified any login* file in /etc
>
> I've no idea what's the reason, also as it worked before.
> Any hints would be greatful.
>
> Regards,
> Thomas.
>
Reference to MERGEMASTER(8).
Cheer up!
_______________________________________________
freebsd-...@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questi...@freebsd.org"