[Openswan Users] pam authentication being used for xauth even when USE_XAUTHPAM?=false

Mohit Mehta mohit.mehta at vyatta.com
Tue Aug 18 21:27:34 EDT 2009

> My guess is the build envrionment sets USE_XAUTHPAM=true
> the ?= means "if env not set, set to this".
> You can try using: USE_XAUTHPAM=false 
> Or try to fix the build environment setting.
> Paul

Hey Paul,

Thanks for the quick response. Turned out that in the source from debian - in debian/rules USE_XAUTHPAM was being set to true. I changed that to false and it works as expected now.

As a side note, I was wondering if I could find the differences (feature-wise or known bugs) between 2.4.x and 2.6.x versions of Openswan; so as to make the decision about which is better in production environments?


----- Paul Wouters <paul at xelerance.com> wrote:
> On Tue, 18 Aug 2009, Mohit Mehta wrote:
> > I am using openswan's server and client with XAUTH. I grabbed the source from debian lenny and have set USE_XAUTH?=true and USE_XAUTHPAM?=false in Makefile.inc. However, on the server side; when I get the user and pass from the client after phase 1, I see this message in logs -
> >
> > "xauth-roadwarriors"[2] #4: XAUTH: pam authentication being called to authenticate user mohit
> >
> > I am not sure why pam would be used when USE_XAUTHPAM?=false and /etc/ipsec.d/passwd is not used. Config files for server and client are below. Am I missing anything here?

More information about the Users mailing list