Todd Taft <670...@bugs.launchpad.net> writes: > When I have this module in my PAM stack and I authenticate as a user > with an AFS identity (and get a token), I get added to a group that > doesn't exist, as reported by the id and groups commands:
Yes, that's the group that tracks the AFS PAG. > Since the default Ubuntu /etc/bash.bashrc file runs the groups command, > every time that I login as a user with an AFS identity, I get the above > error message (groups: cannot find name for group ID 1103439836) before > my first shell prompt. Yup. AFS has always worked this way. The PAG group can in theory be dropped on kernels where keyrings are used to track the PAG, although there are AFS-aware tools that will be confused about the PAG status if that group is not present. I think that's being looked at for the next major version of AFS. But this isn't a bug in pam-afs-session; indeed, for the current version of AFS, it would be a bug if it *didn't* add that group. -- Russ Allbery (r...@debian.org) <http://www.eyrie.org/~eagle/> -- libpam-afs-session gives user membership in nonexistant group https://bugs.launchpad.net/bugs/670789 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
