staff_u can't login via ssh.

Support for security such as Firewalls and securing linux
Post Reply
bryn1u
Posts: 40
Joined: 2010/04/09 15:38:07
Contact:
Contact bryn1u

staff_u can't login via ssh.

Post by bryn1u » 2017/10/02 19:38:33

Hello guys,

I have created user bronek and have added to staff_u selinux.

Code: Select all

root#: useradd -Z staff_u bronek
The same problem exists with user_u selinux
If i create user selinux (staff_u), bronek can't login via ssh. Where is a problem ? I have put logs from audit.log

Code: Select all

type=USER_AUTH msg=audit(1506970990.993:95636): pid=13294 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=PAM:authentication grantors=? acct="bronek" exe="/usr/sbin/sshd" hostname=bcr137.neoplus.adsl.tpnet.pl addr=83.27.233.137 terminal=ssh res=failed'
type=USER_AUTH msg=audit(1506971226.430:95645): pid=13314 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=PAM:authentication grantors=? acct="bronek" exe="/usr/sbin/sshd" hostname=bcr137.neoplus.adsl.tpnet.pl addr=83.27.233.137 terminal=ssh res=failed'
type=USER_AUTH msg=audit(1506971326.081:95652): pid=13321 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=PAM:authentication grantors=? acct="bronek" exe="/usr/sbin/sshd" hostname=bcr137.neoplus.adsl.tpnet.pl addr=83.27.233.137 terminal=ssh res=failed'
type=USER_AUTH msg=audit(1506971330.136:95654): pid=13321 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=PAM:authentication grantors=? acct="bronek" exe="/usr/sbin/sshd" hostname=bcr137.neoplus.adsl.tpnet.pl addr=83.27.233.137 terminal=ssh res=failed'
Top
Post Reply

Return to “CentOS 7 - Security Support”