Home > mailing lists

Issues with PAM : log that it failed, whether it actually failed or not - Mailing list pgsql-general

From	La Cancellera Yoann
Subject	Issues with PAM : log that it failed, whether it actually failed or not
Date	October 11, 2019 11:38:58
Msg-id	CACP=ajbrFFYUrLyJBLV8=q+eNCapa1xDEyvXhMoYrNphs-xqPw@mail.gmail.com Whole thread Raw
Responses	Re: Issues with PAM : log that it failed, whether it actually failed or not
List	pgsql-general

Tree view

Hi,

I am having issues with PAM auth :

it works, password are correctly checked, unknown users cannot access, known user can, everything looks good

But, it always log an error by default even if auth is succesful:

2019-10-10 15:00:46.481 CEST [6109] LOG: pam_authenticate failed: Authentication failure
2019-10-10 15:00:46.481 CEST [6109] FATAL: PAM authentication failed for user "ylacancellera"
2019-10-10 15:00:46.481 CEST [6109] DETAIL: Connection matched pg_hba.conf line 5: "local all all pam"
2019-10-10 15:00:46.481 CEST [6109] LOG: could not send data to client: Broken pipe

And if auth is unsuccessful, it will log that very same message twice

My pg_hba is basically :

local all postgres peer

local all all pam

Any idea about this ? I suspect something is wrong

Thank you,

pgsql-general by date:

From: Jeremy Finzel
Date: 11 October 2019, 00:42:24
Subject: Re: DDL support for logical replication

From: Markus Heiden
Date: 11 October 2019, 11:49:09
Subject: How to make runtime partition pruning work?

Issues with PAM : log that it failed, whether it actually failed or not - Mailing list pgsql-general

Previous

Next