On 08/23/2013 11:04 PM, Alexander Barton wrote:
Hello Michiel!
Hello Alexander!
On Fri, Aug 23, 2013 at 12:55:32PM +0200, Michiel van Es wrote:
I am using the latest Ngircd on an Ubuntu 64 bit vps. I am trying to setup Ngircd with PAM. I've read the documentation for PAM here: http://ngircd.barton.de/doc/PAM.txt but I am having a few questions and issues:
- I've set up /etc/pam.d/ngircd as follows:
#%PAM-1.0 auth required pam_userdb.so db=/etc/ngircd/ngircd-vuser.db account required pam_userdb.so db=/etc/ngircd/ngircd-vuser.db session required pam_loginuid.so
Ngircd is running under the user irc but I am not sure if the user has permissions to use this pam file as specified in the PAM.txt file?
- I see the following message in /var/log/syslog:
==> /var/log/auth.log <== Aug 23 10:41:12 mail ngircd[8733]: PAM _pam_init_handlers: could not open /etc/pam.conf Aug 23 10:41:12 mail ngircd[8733]: PAM pam_start: failed to initialize handlers
==> /var/log/syslog <== Aug 23 10:41:12 mail ngircd[8733]: PAM: Failed to create authenticator! (26)
Why is it looking in the empty file /etc/pam.conf and not /etc/pam.d/ngircd ?
Not ngIRCd is looking for this file, but your PAM library. And I think the library will always look for this file and _additionally_ for the files in /etc/pam.d/.
And /etc/pam.conf should be world-readable.
My relevant config sniplet: # Use PAM if ngIRCd has been compiled with support for it. PAM = yes PAMIsOptional = no
Can I force Ngircd to look for /etc/pam.d/ngricd (world readable) ?
Most probably not, because you would have to force your PAM library to do so -- no ngIRCd.
Ok, so by default it will check /etc/pam.conf first and then /etc/pam.d/ngircd?
Do you have an example /etc/pam.d/ngircd config I can use or try? With my config posted above it does not seem to work..
Alex
Michiel