mirror of
https://git.proxmox.com/git/mirror_frr
synced 2025-04-28 11:50:21 +00:00
pam: declare root as sufficient frr pam account
https://github.com/FRRouting/frr/pull/11465 enabled account verification, but the pam config declares rootok as sufficient in authentication only and not in account verification, what causes warning in the log: vtysh[3747]: pam_warn(frr:account): function=[pam_sm_acct_mgmt] flags=0 service=[frr] terminal=[<unknown>] user=[root] ruser=[<unknown>] rhost=[<unknown>] Signed-off-by: Marius Tomaschewski <mt@suse.com>
This commit is contained in:
Marius Tomaschewski
parent
744de7c695
commit
6031b8a322
1
debian/frr.pam
vendored
1
debian/frr.pam
vendored
@ -1,3 +1,4 @@
|
||||
# Any user may call vtysh but only those belonging to the group frrvty can
|
||||
# actually connect to the socket and use the program.
|
||||
auth sufficient pam_permit.so
|
||||
account sufficient pam_rootok.so
|
||||
|
||||
@ -5,6 +5,7 @@
|
||||
# Only allow root (and possibly wheel) to use this because enable access
|
||||
# is unrestricted.
|
||||
auth sufficient pam_rootok.so
|
||||
account sufficient pam_rootok.so
|
||||
|
||||
# Uncomment the following line to implicitly trust users in the "wheel" group.
|
||||
#auth sufficient pam_wheel.so trust use_uid
|
||||
|
||||
Loading…
Reference in New Issue
Block a user