Can't open systemprograms?! PAM configuration?!

[devvan]

Hi, guys!

System: RH 9, Standalone

Got a problem, recently I was able to logon as a user to Xwin and when I try to use a systemprogram like Accounts&Groups or RHN, a window that ask for root's password appeared and when I gave that it worked fine.

Now I don't get this question!?! How to get it back?! When I try to use same program, with the same user, nothing happens! This user i also a member of the Wheelgroup....

I have changed som settings in the PAM, but I don't know if it controlls this?! The user is able to su from console(outside and inside Xwin). But don't get the window for password in Xwin!


Please help me out!

/devvan

[the_JinX]

Did you select the remember root password [X] in kde ??
that ****t it up for me once . . .

you can allways login as root and start that stuff .. .
that's an easier way..

perhaps you disabled some Xforwarding option (wich is used to be able to run apps as root on a non root X)

[devvan]

I'm running Gnome.. and don't want to be root to run this programs. There must be something that controlls this?!?

As you said I've enabled this setting in /etc/pam.d/su:
auth sufficient /lib/security/pam_wheel.so trust use_uid
(then I didn't need any passwd to su to root) But I have changed it back to, but still don't get any rootpasswd-question!

[MrLinus]

Did you reboot when you went to access this particular "run as" feature?

You might want to look at the following AO Thread. I have a suspicion you are seeing the "feature" that RH says isn't a security vulnerability.

[devvan]

Sorry I didn't explained this good:

The user don't get this ROOT password question and the systemprogram DON'T start, that's the problem. I WANT this work as it did earlier... the user click on RHN and try update and then get a window that needs ROOT passwd to do this! Now nothing happens...

[MrLinus]

Specifically RHN?

How long ago did you last do this successfully? And have you checked RH's site for any updated versions?

[devvan]

It worked fine yesterday, but I've made a couple of security changes in PAM and set a couple of files immutable: passwd, shadow, group, gshadow. Also deleted some vendor account's: adm, games, gopher.

I've got the most recent update from RHN.
It isn't only RHN, it's all systemprograms, such as "User&groups", Etherdump, Traceroute..... When click to start one of these nothing happens. But "Terminal" and other basic program works fine with this User! The user is a member of the Wheel group.

As VictorKaum wrote:
"Redhat authentication tool with the key icon in the notify menu. (that displays the hour and stuff) the so called: Tray icons in Windows. Redhat made it possible to change something while not logged in as root in the graphical shell and becoming root. If you want to do something you need to be root for, RedHat asks for a password. If the correct password is given, RedHat creates the key icon in the tray so you don't need to type the password al the time."

I need that tool back! Want to give root-passwd when starting a program that needs root-permissions! What is controlling this tool?! How to enable/disable this feature?!
When logon with root this Icon is back on the notify menu. If i click on that it comes up "Keep authorization" or "Give up authorization".

/devvan

[MrLinus]

What were the changes you did to PAM? and have you tried reverting the immutable files -- one at a time?

I don't think the gopher or games accounts would be issues but the Group file might be as might removing the adm. (you did a back up of those files -- shadow and passwd before deleting right?)

[devvan]

Ok, as you said I think it's a combination of the deleted adm-group and immutable group files.

MsMittens: Thanx a lot for your answers!

/Devvan