From mboxrd@z Thu Jan 1 00:00:00 1970 From: =?ISO-8859-15?Q?Mat=EDas_L=F3pez_Bergero?= Subject: Re: can't get lastlogin info wen loging in trough ssh Date: Fri, 29 Oct 2004 15:47:56 -0300 Sender: linux-admin-owner@vger.kernel.org Message-ID: <4182905C.8070703@udesa.edu.ar> References: <41349AA2.7050701@udesa.edu.ar> <4134B47A.1080506@apartia.fr> <41815CAE.3070205@udesa.edu.ar> <60a7468904102814025ba1a85b@mail.gmail.com> <41824E0D.4010205@udesa.edu.ar> <41824F67.9060700@apartia.fr> Mime-Version: 1.0 Content-Transfer-Encoding: QUOTED-PRINTABLE Return-path: In-Reply-To: <41824F67.9060700@apartia.fr> List-Id: Content-Type: text/plain; charset="iso-8859-1"; format="flowed" To: Laurent CARON Cc: "Adrian C." , linux-admin@vger.kernel.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, =46inally I solved the problem. This is my /etc/pam.d/sshd file: #%PAM-1.0 auth required pam_stack.so service=3Dsystem-auth auth required pam_nologin.so account required pam_stack.so service=3Dsystem-auth password required pam_stack.so service=3Dsystem-auth session required pam_stack.so service=3Dsystem-auth session required pam_limits.so session optional pam_console.so session optional /lib/security/pam_lastlog.so I was reading a little bit about pam, and find out that there is a debu= g flag to set on a pam module. So, i set the module pam_lastlog to debug like this: session optional /lib/security/pam_lastlog.so debug I add the following line to my syslog.conf to capture all the authentication procedures: auth.* /var/log/authlo= g And guess what find the the /var/log/atuhlog file??? PAM-lastlog[5890]: unable to open /var/log/lastlog file Damn... Problem solved. I chmod to 644 that file. The option LASTLOG_ENAB in /etc/login.def it's not required to display the lastlog message. Many thanks to all for the help! BR, Mat=EDas Laurent CARON wrote: | Mat=EDas L=F3pez Bergero wrote: | |> -----BEGIN PGP SIGNED MESSAGE----- |> Hash: SHA1 |> |> Adrian C. wrote: |> | See /etc//login.defs |> | |> | LASTLOG_ENAB yes | | | /etc/pam.d/ssh | | #%PAM-1.0 | auth required pam_nologin.so | auth required pam_unix.so | auth required pam_env.so # [1] | | account required pam_unix.so | | session required pam_unix.so | session optional pam_lastlog.so # [1] | session optional pam_motd.so # [1] | session optional pam_mail.so standard noenv # [1] | session required pam_limits.so | | password required pam_unix.so | -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFBgpBcRB0HKLRQp/gRAsTRAKC7jzOXkT9xhYQcirC1aJavFWZGrACfXZfL dT/05ljBoy7TpO9dNLHjUEU=3D =3Dh/8P -----END PGP SIGNATURE----- - To unsubscribe from this list: send the line "unsubscribe linux-admin" = in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html