The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Disable PAM authentication

Discussion in 'Security' started by hoseke, Apr 9, 2012.

  1. hoseke

    hoseke Member

    Joined:
    Jan 4, 2012
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hi,

    I received the following email notification, "Root was logged into pam using following authentication service: system"

    There is no IP associated with the successful login and it is localhost logging into root.

    I'm at WHM 11.32.2 (build 15) CENTOS 6.2 x86_64

    How can i disable PAM from using root access, set PAM to no?


    If possible please explain in easy steps :)

    Thanks.
     
    #1 hoseke, Apr 9, 2012
    Last edited: Apr 9, 2012
  2. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
  3. testnick

    testnick Registered

    Joined:
    Apr 9, 2012
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Sice I upgraded my cPanel servers to 11.32.2 (build 15) I am basicly flooded from all of them with "Root was logged into pam using following authentication service: system".
     
  4. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Did you check /var/log/messages to see if it is atd service logging there?
     
  5. testnick

    testnick Registered

    Joined:
    Apr 9, 2012
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Irrelevant - edited.
     
    #5 testnick, Apr 9, 2012
    Last edited: Apr 9, 2012
  6. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    I don't see pam in those returns from the command I indicated?

    Code:
    grep pam /var/log/messages
    Are you certain the right command was issued?

    Also, we have a new internal case (58711) about the atd service using pam authentication via /var/log/messsages and to have these alerts suppressed from cPHulk for that service.
     
Loading...

Share This Page