[Openswan Users] pam authentication being used for xauth even when USE_XAUTHPAM?=false
mohit.mehta at vyatta.com
Tue Aug 18 21:27:34 EDT 2009
> My guess is the build envrionment sets USE_XAUTHPAM=true
> the ?= means "if env not set, set to this".
> You can try using: USE_XAUTHPAM=false
> Or try to fix the build environment setting.
Thanks for the quick response. Turned out that in the source from debian - in debian/rules USE_XAUTHPAM was being set to true. I changed that to false and it works as expected now.
As a side note, I was wondering if I could find the differences (feature-wise or known bugs) between 2.4.x and 2.6.x versions of Openswan; so as to make the decision about which is better in production environments?
----- Paul Wouters <paul at xelerance.com> wrote:
> On Tue, 18 Aug 2009, Mohit Mehta wrote:
> > I am using openswan's server and client with XAUTH. I grabbed the source from debian lenny and have set USE_XAUTH?=true and USE_XAUTHPAM?=false in Makefile.inc. However, on the server side; when I get the user and pass from the client after phase 1, I see this message in logs -
> > "xauth-roadwarriors" 172.16.117.200 #4: XAUTH: pam authentication being called to authenticate user mohit
> > I am not sure why pam would be used when USE_XAUTHPAM?=false and /etc/ipsec.d/passwd is not used. Config files for server and client are below. Am I missing anything here?
More information about the Users