"Dunric" <dunric@centrum.cz> writes:

>> Od: "Steven M. Bellovin" <smb@cs.columbia.edu>
>> Komu: "Dunric" <dunric@centrum.cz>
>> CC: current-users@NetBSD.org
>> Datum: Mon, 17 Jan 2005 09:53:40 -0500
>> P=C5=99edm=C4=9Bt: Re: Password for su no more required after upgrade !
>>
>> In message <S1339023AbVAQNtU/20050117134930Z+89825@mail2.centrum.cz>, "D=
unric"=20
>> writes:
>> >I upgraded NetBSD 2.0 to current from sources and now any user can su
>> >to root without a password.
>> >Yep, I've read /usr/src/UPDATING, I've run postinstall -s /usr/src -d
>> >/ fix. Postinstall was unable to fix x11 config files only.
>> >After postinstall and etcupdate I've found /etc/pam.d remains empty so =
I tried
>> >to copy manualy pam config for su from /usr/src/etc/pam.d but it
>> >solved nothing :-(
>> >
>> >What have to be done for authentication to be working again ?
>> >
>> >
>> >Thx in advance
>> >
>> That sure sounds like root no longer has a password.  You can check=20
>> that by looking at /etc/master.passwd, or simply setting a new password=
=20
>> for root.
>>=20
>>   --Prof. Steven M. Bellovin, http://www.cs.columbia.edu/~smb
>
> Unfortunately root has password. I even tried make a new password and rec=
reated password databases with pwm_mkdb :(
> I think it has something to do with su is using(linked against) PAM libra=
ry now. I never used pam before so I'm now unable simply track down source =
of the problem.
>
> Any help appreciated
>
> Thx
>
>
> Thomas
>

Added these parameters to /etc/mk.conf:

  1. MKPAM=3D YES

  2. USE_PAM=3D YES

  3. cd ${src}/usr.bin/su && make && make install