PAM audit support breaks vsftpd local login

Bug #1176877 reported by Baseciq on 2013-05-06
10
This bug affects 2 people
Affects Status Importance Assigned to Milestone
PLD Linux
Undecided
Unassigned

Bug Description

Please note: I can't set vsftpd as a package in bug reporting form, that's why it's "I don't know".

PAM 1.1.6-3 breaks vsftpd 2.3.4-1. After upgrading, local users aren't allowed to log in:

<--- 220 (vsFTPd 2.3.4)
---> FEAT
<--- 211-Features:
<--- EPRT
<--- EPSV
<--- MDTM
<--- PASV
<--- REST STREAM
<--- SIZE
<--- TVFS
<--- UTF8
<--- 211 End
---> OPTS UTF8 ON
<--- 200 Always in UTF8 mode.
---> USER XXXX
<--- 331 Please specify the password.
---> PASS XXXX
<--- 530 Login incorrect.
---> PWD
<--- 530 Please login with USER and PASS.
ls: Logowanie nie udało się: 530 Login incorrect.
---> QUIT
<--- 221 Goodbye.
---- Zamykanie gniazda sterującego

From secure:

May 6 14:09:51 netserv vsftpd: PAM audit_log_acct_message() failed: Operation not permitted

Rebuilding PAM --without audit helps.
Rebuilding vsftpd with most current version from git didn't help.

vsftpd.conf (running in standalone mode):

anonymous_enable=YES
local_enable=YES
write_enable=YES
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
listen=YES
listen_address=1.2.3.4

/etc/pam.d/ftp:

#%PAM-1.0
auth required pam_listfile.so item=user sense=deny file=/etc/ftpd/ftpusers onerr=succeed
auth include system-auth
account required pam_nologin.so
account include system-auth
session include system-auth

User isn't listed in /etc/ftpd/ftpusers.

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers