This is already a rather elderly thread, but I think I have some new info
on it.
First, this *only* seems to occur on X sessions started by gdm.
Second, pam_group.so has nothing to do with it.
Third, I removed all local accounts and groups (other than system users
and groups). This is also why i
> Doubtful. Several things might cause this behavior (slow slapd timing
> out, nscd caching bad information, group queries set up wrong), but it's
Nscd's off since it *WILL* cache up the wrong info every now and then
without a clear indication of why. This I thought might be ldap timeout
issue, b
This one time, at band camp, Juha Jäykkä said:
> > The issue is with pam_group and /etc/security/group.conf.
> How can I debug this further? I don't know how the kernel checks the
> permissions, since apparently the output of "id" and what groups the
> kernel thinks the user belongs to, differ. Per
> The issue is with pam_group and /etc/security/group.conf.
I doubt that: /etc/security/group.conf is empty (apart from comments).
I have been tinkering with this every now and then and the problem won't
go away. It even seems to manifest itself at random!
For example, I created a user "testuser
Juha Jäykkä wrote:
> Hi!
>
> I was digging around a problem with a user not being able to access his
> cdrom even though the user belongs to group cdrom (as reported by "groups
> user") and the cdrom device is mode rw- group cdrom. It was immediately
> clear this is a libnss-ldap issue, since the p
> Juha> These are different, why? According to man id "id" and "id
> Juha> " are the same.
> The first one shows the groups that are assigned to the current
> process, the second one shows the default list of groups the user will
> get when logging in again.
Ach, I did not know this, but i
> "Juha" == Juha Jäykkä <[EMAIL PROTECTED]> writes:
Juha> Now, what I am concerned about is this. I am logged in as
Juha> user "juhaj" and
Juha> ~> id
Juha> uid=1000(juhaj) gid=1000(juhaj)
Juha>
groups=33731,37810,4(adm),4(adm),24(cdrom),24(cdrom),29(audio),29(audio),40(s
Russ Allbery <[EMAIL PROTECTED]> writes:
> I wonder if the weird AFS PAG hack is corrupting the process group list in
> some way. It would be the first time I'd heard of that problem if so, but
That's quite possible, as I've observed similar behavior on my amd64
machine (but neglected to report
Juha Jäykkä <[EMAIL PROTECTED]> writes:
> I was digging around a problem with a user not being able to access his
> cdrom even though the user belongs to group cdrom (as reported by
> "groups user") and the cdrom device is mode rw- group cdrom. It was
> immediately clear this is a libnss-ldap issu
9 matches
Mail list logo
