Bug 688521
| Summary: | Cannot login into root with "su -" | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Joachim Backes <joachim.backes> | ||||||
| Component: | coreutils | Assignee: | Ondrej Vasik <ovasik> | ||||||
| Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||||
| Severity: | high | Docs Contact: | |||||||
| Priority: | unspecified | ||||||||
| Version: | 15 | CC: | aquini, kdudka, maxamillion, ovasik, tmraz, twaugh | ||||||
| Target Milestone: | --- | ||||||||
| Target Release: | --- | ||||||||
| Hardware: | Unspecified | ||||||||
| OS: | Unspecified | ||||||||
| Whiteboard: | |||||||||
| Fixed In Version: | Doc Type: | Bug Fix | |||||||
| Doc Text: | Story Points: | --- | |||||||
| Clone Of: | Environment: | ||||||||
| Last Closed: | 2011-03-17 13:54:01 UTC | Type: | --- | ||||||
| Regression: | --- | Mount Type: | --- | ||||||
| Documentation: | --- | CRM: | |||||||
| Verified Versions: | Category: | --- | |||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||
| Embargoed: | |||||||||
| Attachments: |
|
||||||||
|
Description
Joachim Backes
2011-03-17 09:54:29 UTC
Adding PAM maintainer to CC as he may have some insight to it/what to check. PAM support was consolidated with SUSE (it means rewritten) in 8.7-1.fc15 - and noone complained so far, so I wonder what went wrong on your machine. Is the issue new (caused by some update) or you have just installed the brand new F-15 and updated packages? Are there any SELinux AVCs? 'ausearch -m AVC' What is in your /etc/nsswitch.conf? (In reply to comment #2) > Are there any SELinux AVCs? 'ausearch -m AVC' > > What is in your /etc/nsswitch.conf? 1. Selinux is disabled 2. /etc/nsswitch.conf: See attachment 3. ausearch -m AVC: see attachment Created attachment 485997 [details]
/etc/nsswitch.conf
Created attachment 485999 [details]
Output of ausearch -m AVC
(In reply to comment #1) > Adding PAM maintainer to CC as he may have some insight to it/what to check. > PAM support was consolidated with SUSE (it means rewritten) in 8.7-1.fc15 - and > noone complained so far, so I wonder what went wrong on your machine. Is the > issue new (caused by some update) or you have just installed the brand new F-15 > and updated packages? This is a fresh installed F15. I have a similar problem: after locking screen, I cannot unlock screen (passwd is not accepted: BZ 684653) (In reply to comment #6) > (In reply to comment #1) > > Adding PAM maintainer to CC as he may have some insight to it/what to check. > > PAM support was consolidated with SUSE (it means rewritten) in 8.7-1.fc15 - and > > noone complained so far, so I wonder what went wrong on your machine. Is the > > issue new (caused by some update) or you have just installed the brand new F-15 > > and updated packages? > > This is a fresh installed F15. I have a similar problem: after locking screen, > I cannot unlock screen (passwd is not accepted: BZ 684653) Sorry: I meant: this is a fresh installed F15 *+ all actual updates* What 'ls -l /bin/su' prints? Ondrej, were there any setuid related changes in su recently? The 'uid=500 euid=500' in the log message above actually looks very suspicious. And also output of 'ls -l /sbin/unix_chkpwd' please. (In reply to comment #9) > And also output of 'ls -l /sbin/unix_chkpwd' please. -rwsr-xr-x. 1 root root 32000 Feb 8 15:19 /sbin/unix_chkpwd No, I'm not aware of any such change, su should still be suid root:root (4755) ... By setting the s-bit in /bin/su, getting rid from my su problems :-( I don't know why it was lost. Thanks for your support :-) JB I checked the koji build and suid is present there, so closing NOTABUG. Feel free (to reopen and reassign) if you find out what cleared the suid... |