From jharris at westell.com Wed Feb 5 15:37:52 2014 From: jharris at westell.com (Harris, Jeff) Date: Wed, 5 Feb 2014 15:37:52 +0000 Subject: [tac_plus] IPv6 fixes for tac_plus Message-ID: I have attached a patch to tac_plus to fix logging of IPv6 addresses. Jeff Harris Senior Staff Engineer Westell Technologies Office: +1 (614) 923-1196 www.westell.com *************************************************************************************** This e-mail and its attachments are private and may contain confidential and proprietary information that is protected. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution or use of the information contained in or attached to this message is strictly prohibited. If you have received this e-mail in error, please notify the sender by replying to this message, and then delete it from your system. Thank you. -------------- next part -------------- A non-text attachment was scrubbed... Name: ipv6.patch Type: application/octet-stream Size: 1916 bytes Desc: ipv6.patch URL: From cjp at 0x1.net Mon Feb 10 21:29:29 2014 From: cjp at 0x1.net (Christopher J. Pilkington) Date: Mon, 10 Feb 2014 21:29:29 +0000 Subject: [tac_plus] PAM for enable authentication Message-ID: <20140210212929.GE24304@khujand.0x1.net> I'm attempting to use tac_plus for authentication for our firewalls which do not support the "priv-lvl" method of auto-enabling users. We normally use PAM for authentication. We thought of doing enable = nopassword, but there is an attack where a user can enable as themselves, then disable, then enable as another user without a password. I see enable only supports file, cleartext, nopassword or des. Would it be possible for it to support PAM? Thanks, -cjp From Michael.Josten at hs-niederrhein.de Mon Feb 17 08:41:27 2014 From: Michael.Josten at hs-niederrhein.de (Josten, Michael) Date: Mon, 17 Feb 2014 09:41:27 +0100 Subject: [tac_plus] accounting & syslog Message-ID: <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55D8@prometheus> Hello everyone, i went through some posts I found in the mailing list and took a look at the tac_plus.conf manpage. Both accounting method and syslog facility are described so far, but what I miss or maybe just haven't found : How can I send notifications to a remote syslog-ng host ? My guess is, I have to install syslog-ng on both, my tacacs+ host & the syslog-ng / logstash stack host. This is not a big deal, I just want to keep my T+ machine as clean as possible. Thanks in advance Michael -------------- next part -------------- An HTML attachment was scrubbed... URL: From alan.mckinnon at gmail.com Mon Feb 17 20:31:03 2014 From: alan.mckinnon at gmail.com (Alan McKinnon) Date: Mon, 17 Feb 2014 22:31:03 +0200 Subject: [tac_plus] accounting & syslog In-Reply-To: <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55D8@prometheus> References: <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55D8@prometheus> Message-ID: <53027187.5060807@gmail.com> On 17/02/2014 10:41, Josten, Michael wrote: > Hello everyone, > > i went through some posts I found in the mailing list and took a look at the tac_plus.conf manpage. > Both accounting method and syslog facility are described so far, but what I miss or maybe just haven't found : > How can I send notifications to a remote syslog-ng host ? My guess is, I have to install syslog-ng on both, > my tacacs+ host & the syslog-ng / logstash stack host. This is not a big deal, I just want to keep my T+ machine > as clean as possible. How to configure syslog-ng to do this is a routine and standard action, clearly answered in the syslog-ng docs available from balabit.com. In summary, you send your logs to a local syslog-ng which forwards them to a remote one, you do not configure tac_plus to send logs to a remote host. All sysloggers do it this way. Getting tacacs logs into syslog is easy, use the "logging=" directive in tac_plus.conf and configure syslog-ng to deal with that facility in the desired way. Accounting logs are tricker. The CHANGES file indicates tac_plus supports sending these logs direct to syslog, but I never got this to work properly for me. Maybe I'm doing it wrong but I have to do it the long way round: 1. accounting logs go to a disk file 2. syslog-ng reads that file, then treats the log like any other log it receives: In tac_plus.conf: # Accounting File accounting file = /var/log/tacacs/accounting_cisco >From syslog-ng.conf: # Tacacs accounting logs # tac_plus accounting logs are read from disk and sent to remote # syslogger. Sending accounting logs to syslog is somewhat supported # but we have not tested it fully yet, so still do it the old way: source s_tac_plus_acc { file("/var/log/tacacs/accounting", default-facility(local6), default-priority(info)); }; # Remote logging destination remote-logger { tcp("xxx.xxx.xxx.xxx" port(514)); }; log { source(s_tac_plus_acc); destination(remote-logger); }; Ensure your logrotator correctly HUPs tac_plus when rotating logs, otherwise your logging will mysteriously stop. -- Alan McKinnon alan.mckinnon at gmail.com From aaron.wasserott at viawest.com Tue Feb 18 03:45:28 2014 From: aaron.wasserott at viawest.com (Aaron Wasserott) Date: Tue, 18 Feb 2014 03:45:28 +0000 Subject: [tac_plus] accounting & syslog In-Reply-To: <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55D8@prometheus> References: <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55D8@prometheus> Message-ID: <1FD1A2FED7E41F4ABD1D2E2BDDEA519B051B56@mbx030-w1-co-6.exch030.domain.local> Yes, you would need a syslog daemon on your tacacs server that can send syslog messages over the network. Your local tac_plus daemon would use the local syslog instance, and in your syslog config you would configure the local and export parameters - so you can keep local accounting records as well as send to your syslog server. Then other log-monitored daemons would work the same way, they route locally to syslog, syslog sends to local file and across the network to a remote log host. Not sure what flavor of Linux you are running, but the common rsyslog daemon supports remote logging. http://www.linuxhomenetworking.com/wiki/index.php/Quick_HOWTO_:_Ch05_:_Troubleshooting_Linux_with_syslog#.UwLW3LSSpww Cheers, -----Original Message----- From: tac_plus-bounces at shrubbery.net [mailto:tac_plus-bounces at shrubbery.net] On Behalf Of Josten, Michael Sent: Monday, February 17, 2014 1:41 AM To: 'tac_plus at shrubbery.net' Subject: [tac_plus] accounting & syslog Hello everyone, i went through some posts I found in the mailing list and took a look at the tac_plus.conf manpage. Both accounting method and syslog facility are described so far, but what I miss or maybe just haven't found : How can I send notifications to a remote syslog-ng host ? My guess is, I have to install syslog-ng on both, my tacacs+ host & the syslog-ng / logstash stack host. This is not a big deal, I just want to keep my T+ machine as clean as possible. Thanks in advance Michael -------------- next part -------------- An HTML attachment was scrubbed... URL: _______________________________________________ tac_plus mailing list tac_plus at shrubbery.net http://www.shrubbery.net/mailman/listinfo/tac_plus From efotso63 at gmail.com Tue Feb 25 19:52:40 2014 From: efotso63 at gmail.com (Eugene Fotso) Date: Tue, 25 Feb 2014 13:52:40 -0600 Subject: [tac_plus] error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory In-Reply-To: References: Message-ID: I HAVE TRIED: # ldconfig -v # /opt/tacacs/bin/tac_plus -V /opt/tacacs/bin/tac_plus: error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory -- ls -altr /usr/lib|grep libtacacs On Tue, Feb 25, 2014 at 12:40 PM, Eugene Fotso wrote: > Hello, > I CAN'T seem to find SOLUTION for this issue I am having with > "libtacacs.so.1 " > > *OS= RedHat* > * tac_plusRel=F4.0.4.27a* > > I have installed as required, but every time I attemp to run "tac_plus", I > get "*error while loading shared libraries: libtacacs.so.1: cannot open > shared object file: No such file or directory"* > > > # /etc/init.d/tac_plus start > > Starting Tacacs+ server: /opt/tacacs/bin/tac_plus: *error while loading > shared libraries: libtacacs.so.1: cannot open shared object file: No such > file or directory* > tac_plus. > > I HAVE TRIED ALL the available SOLUTIONS online, but still NOT WORKING: > HELP HELP HELP > > > --- > > *# ./configure >/dev/null* > > configure: WARNING: i686 not found in cputable > > configure: WARNING: linux-gnu not found in ostable > > ./configure: line 8717: *pkg-config: command not found* > > > > *# make >/dev/null* > > processarc.o: In function `process_archive': > > /opt/TACACS/dpkg-1.14.31/src/processarc.c:173: warning: the use of > `tmpnam' is dangerous, better use `mkstemp' > > archives.o: In function `tarobject': > > /opt/TACACS/dpkg-1.14.31/src/archives.c:634: undefined reference to > `matchpathcon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:640: undefined reference to > `setfscreatecon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:802: undefined reference to > `setfscreatecon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:804: undefined reference to > `freecon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:826: undefined reference to > `setfscreatecon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:618: undefined reference to > `is_selinux_enabled' > > collect2: ld returned 1 exit status > > make[2]: *** [dpkg] Error 1 > > make[1]: *** [all-recursive] Error 1 > > make: *** [all] Error 2 > > > > *# cd utils* > > *# make install* > > gcc -std=gnu99 -DHAVE_CONFIG_H -I. -I.. > -DLOCALEDIR=\"/usr/local/share/locale\" -idirafter ../libcompat -I../lib > -g -O2 -MT start-stop-daemon.o -MD -MP -MF .deps/start-stop-daemon.Tpo -c > -o start-stop-daemon.o start-stop-daemon.c > > mv -f .deps/start-stop-daemon.Tpo .deps/start-stop-daemon.Po > > gcc -std=gnu99 -g -O2 -Wl,-O1 -o start-stop-daemon start-stop-daemon.o > ../libcompat/libcompat.a > > make[1]: Entering directory `/opt/TACACS/dpkg-1.14.31/utils' > > test -z "/usr/local/sbin" || /bin/mkdir -p "/usr/local/sbin" > > /usr/bin/install -c 'start-stop-daemon' > '/usr/local/sbin/start-stop-daemon' > > make[1]: Nothing to be done for `install-data-am'. > > make[1]: Leaving directory `/opt/TACACS/dpkg-1.14.31/utils' > > -- > *Eugene "DeFOT's" FOTSO,* > *"Be Well, Do Good Work and Above All, KEEP IN TOUCH!"* > -- *Eugene "DeFOT's" FOTSO,* *"Be Well, Do Good Work and Above All, KEEP IN TOUCH!"* -------------- next part -------------- An HTML attachment was scrubbed... URL: From alan.mckinnon at gmail.com Tue Feb 25 21:23:58 2014 From: alan.mckinnon at gmail.com (Alan McKinnon) Date: Tue, 25 Feb 2014 23:23:58 +0200 Subject: [tac_plus] error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory In-Reply-To: References: Message-ID: <530D09EE.2090409@gmail.com> I think you are going about this in the wrong way, I notice several unusual aspects of your posted output. Why are you installing into /opt? Upstream source default is --prefix=/usr/local which is the norm for autotools. Installs into /opt tend to be problematic as one often needs to manually adjust library search paths. This does not occur when using /usr/local/lib You don't have a pkg-config the package can use. What are those references to dpkg? Redhat is rpm based, are you trying to extract and build sources from a Debian package? Debian probably tweak and adjust sources to suit their layout which might not suit RedHat 40.0.427a is alpha software and may have bugs. 4.0.4.26 is latest current and works well. I recommend you follow the normal pattern, this workflow works correctly for more across many different platforms and distros: wget ftp://ftp.shrubbery.net/pub/tac_plus/tacacs+-F4.0.4.26.tar.gz tar xvzf tacacs+-F4.0.4.26.tar.gz cd tacacs+-F4.0.4.26 ./configure --help=short ./configure make sudo make install On 25/02/2014 21:52, Eugene Fotso wrote: > I HAVE TRIED: > > # ldconfig -v > > # /opt/tacacs/bin/tac_plus -V > /opt/tacacs/bin/tac_plus: error while loading shared libraries: > libtacacs.so.1: cannot open shared object file: No such file or directory > -- ls -altr /usr/lib|grep libtacacs > > > On Tue, Feb 25, 2014 at 12:40 PM, Eugene Fotso wrote: > >> Hello, >> I CAN'T seem to find SOLUTION for this issue I am having with >> "libtacacs.so.1 " >> >> *OS= RedHat* >> * tac_plusRel=F4.0.4.27a* >> >> I have installed as required, but every time I attemp to run "tac_plus", I >> get "*error while loading shared libraries: libtacacs.so.1: cannot open >> shared object file: No such file or directory"* >> >> >> # /etc/init.d/tac_plus start >> >> Starting Tacacs+ server: /opt/tacacs/bin/tac_plus: *error while loading >> shared libraries: libtacacs.so.1: cannot open shared object file: No such >> file or directory* >> tac_plus. >> >> I HAVE TRIED ALL the available SOLUTIONS online, but still NOT WORKING: >> HELP HELP HELP >> >> >> --- >> >> *# ./configure >/dev/null* >> >> configure: WARNING: i686 not found in cputable >> >> configure: WARNING: linux-gnu not found in ostable >> >> ./configure: line 8717: *pkg-config: command not found* >> >> >> >> *# make >/dev/null* >> >> processarc.o: In function `process_archive': >> >> /opt/TACACS/dpkg-1.14.31/src/processarc.c:173: warning: the use of >> `tmpnam' is dangerous, better use `mkstemp' >> >> archives.o: In function `tarobject': >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:634: undefined reference to >> `matchpathcon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:640: undefined reference to >> `setfscreatecon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:802: undefined reference to >> `setfscreatecon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:804: undefined reference to >> `freecon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:826: undefined reference to >> `setfscreatecon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:618: undefined reference to >> `is_selinux_enabled' >> >> collect2: ld returned 1 exit status >> >> make[2]: *** [dpkg] Error 1 >> >> make[1]: *** [all-recursive] Error 1 >> >> make: *** [all] Error 2 >> >> >> >> *# cd utils* >> >> *# make install* >> >> gcc -std=gnu99 -DHAVE_CONFIG_H -I. -I.. >> -DLOCALEDIR=\"/usr/local/share/locale\" -idirafter ../libcompat -I../lib >> -g -O2 -MT start-stop-daemon.o -MD -MP -MF .deps/start-stop-daemon.Tpo -c >> -o start-stop-daemon.o start-stop-daemon.c >> >> mv -f .deps/start-stop-daemon.Tpo .deps/start-stop-daemon.Po >> >> gcc -std=gnu99 -g -O2 -Wl,-O1 -o start-stop-daemon start-stop-daemon.o >> ../libcompat/libcompat.a >> >> make[1]: Entering directory `/opt/TACACS/dpkg-1.14.31/utils' >> >> test -z "/usr/local/sbin" || /bin/mkdir -p "/usr/local/sbin" >> >> /usr/bin/install -c 'start-stop-daemon' >> '/usr/local/sbin/start-stop-daemon' >> >> make[1]: Nothing to be done for `install-data-am'. >> >> make[1]: Leaving directory `/opt/TACACS/dpkg-1.14.31/utils' >> >> -- >> *Eugene "DeFOT's" FOTSO,* >> *"Be Well, Do Good Work and Above All, KEEP IN TOUCH!"* >> > > > -- Alan McKinnon alan.mckinnon at gmail.com From alan.mckinnon at gmail.com Tue Feb 25 21:40:28 2014 From: alan.mckinnon at gmail.com (Alan McKinnon) Date: Tue, 25 Feb 2014 23:40:28 +0200 Subject: [tac_plus] error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory In-Reply-To: References: Message-ID: <530D0DCC.8000507@gmail.com> On 25/02/2014 21:52, Eugene Fotso wrote: > I HAVE TRIED: > > # ldconfig -v > > # /opt/tacacs/bin/tac_plus -V > /opt/tacacs/bin/tac_plus: error while loading shared libraries: > libtacacs.so.1: cannot open shared object file: No such file or directory > -- ls -altr /usr/lib|grep libtacacs You should rather do what I said in my other post, but the immediate solution to this problem is that you are looking for your libraries in /usr/lib and they are not there. They will be in /opt, probably /opt/tacacs/lib You need to find the real location of libtacacs.so.1 and put that path in /etc/ld.so.conf at the end then run ldconfig This will enable the runtime loader to find and load your shared libs. The problem will not show up when compiling and installing as the linker always knows the location of the libs the compiler just built. Your problem occurs later at runtime. > > > On Tue, Feb 25, 2014 at 12:40 PM, Eugene Fotso wrote: > >> Hello, >> I CAN'T seem to find SOLUTION for this issue I am having with >> "libtacacs.so.1 " >> >> *OS= RedHat* >> * tac_plusRel=F4.0.4.27a* >> >> I have installed as required, but every time I attemp to run "tac_plus", I >> get "*error while loading shared libraries: libtacacs.so.1: cannot open >> shared object file: No such file or directory"* >> >> >> # /etc/init.d/tac_plus start >> >> Starting Tacacs+ server: /opt/tacacs/bin/tac_plus: *error while loading >> shared libraries: libtacacs.so.1: cannot open shared object file: No such >> file or directory* >> tac_plus. >> >> I HAVE TRIED ALL the available SOLUTIONS online, but still NOT WORKING: >> HELP HELP HELP >> >> >> --- >> >> *# ./configure >/dev/null* >> >> configure: WARNING: i686 not found in cputable >> >> configure: WARNING: linux-gnu not found in ostable >> >> ./configure: line 8717: *pkg-config: command not found* >> >> >> >> *# make >/dev/null* >> >> processarc.o: In function `process_archive': >> >> /opt/TACACS/dpkg-1.14.31/src/processarc.c:173: warning: the use of >> `tmpnam' is dangerous, better use `mkstemp' >> >> archives.o: In function `tarobject': >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:634: undefined reference to >> `matchpathcon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:640: undefined reference to >> `setfscreatecon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:802: undefined reference to >> `setfscreatecon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:804: undefined reference to >> `freecon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:826: undefined reference to >> `setfscreatecon' >> >> /opt/TACACS/dpkg-1.14.31/src/archives.c:618: undefined reference to >> `is_selinux_enabled' >> >> collect2: ld returned 1 exit status >> >> make[2]: *** [dpkg] Error 1 >> >> make[1]: *** [all-recursive] Error 1 >> >> make: *** [all] Error 2 >> >> >> >> *# cd utils* >> >> *# make install* >> >> gcc -std=gnu99 -DHAVE_CONFIG_H -I. -I.. >> -DLOCALEDIR=\"/usr/local/share/locale\" -idirafter ../libcompat -I../lib >> -g -O2 -MT start-stop-daemon.o -MD -MP -MF .deps/start-stop-daemon.Tpo -c >> -o start-stop-daemon.o start-stop-daemon.c >> >> mv -f .deps/start-stop-daemon.Tpo .deps/start-stop-daemon.Po >> >> gcc -std=gnu99 -g -O2 -Wl,-O1 -o start-stop-daemon start-stop-daemon.o >> ../libcompat/libcompat.a >> >> make[1]: Entering directory `/opt/TACACS/dpkg-1.14.31/utils' >> >> test -z "/usr/local/sbin" || /bin/mkdir -p "/usr/local/sbin" >> >> /usr/bin/install -c 'start-stop-daemon' >> '/usr/local/sbin/start-stop-daemon' >> >> make[1]: Nothing to be done for `install-data-am'. >> >> make[1]: Leaving directory `/opt/TACACS/dpkg-1.14.31/utils' >> >> -- >> *Eugene "DeFOT's" FOTSO,* >> *"Be Well, Do Good Work and Above All, KEEP IN TOUCH!"* >> > > > -- Alan McKinnon alan.mckinnon at gmail.com From heas at shrubbery.net Tue Feb 25 22:54:41 2014 From: heas at shrubbery.net (heasley) Date: Tue, 25 Feb 2014 22:54:41 +0000 Subject: [tac_plus] error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory In-Reply-To: <530D0DCC.8000507@gmail.com> References: <530D0DCC.8000507@gmail.com> Message-ID: <20140225225441.GI7366@shrubbery.net> Tue, Feb 25, 2014 at 11:40:28PM +0200, Alan McKinnon: > On 25/02/2014 21:52, Eugene Fotso wrote: > > I HAVE TRIED: > > > > # ldconfig -v > > > > # /opt/tacacs/bin/tac_plus -V > > /opt/tacacs/bin/tac_plus: error while loading shared libraries: > > libtacacs.so.1: cannot open shared object file: No such file or directory > > -- ls -altr /usr/lib|grep libtacacs > > You should rather do what I said in my other post, but the immediate > solution to this problem is that you are looking for your libraries in > /usr/lib and they are not there. > > They will be in /opt, probably /opt/tacacs/lib > > You need to find the real location of libtacacs.so.1 and put that path > in /etc/ld.so.conf at the end then run ldconfig > > This will enable the runtime loader to find and load your shared libs. > The problem will not show up when compiling and installing as the linker > always knows the location of the libs the compiler just built. Your > problem occurs later at runtime. the program header (from ld) should provide pointers to where the library is, assuming that it actually was installed. it might be that the linker needs more on your system; eg: /bin/sh ./libtool --tag=CC --mode=link gcc -g -O2 -D_THREAD_SAFE -pthread -g -O2 -D_THREAD_SAFE -pthread -version-info 1:0:0 -version-number 1:0:0 -o libtacacs.la -rpath /usr/local/lib libtacacs_la-fdes.lo libtacacs_la-maxsess.lo libtacacs_la-md4.lo libtacacs_la-md5.lo libtacacs_la-packet.lo -lpam -lcrypt libtool: link: gcc -shared -fPIC -DPIC .libs/libtacacs_la-fdes.o .libs/libtacacs_la-maxsess.o .libs/libtacacs_la-md4.o .libs/libtacacs_la-md5.o .libs/libtacacs_la-packet.o -lpam -lcrypt -O2 -pthread -O2 -pthread -pthread -Wl,-soname -Wl,libtacacs.so.1 -o .libs/libtacacs.so.1 see -rpath; make sure it added this on your system in a manner appropriate for your installation. if not; do it manually and reinstall. and tell me if that fixes it and what kind of system you are on. > > > > > > > > > On Tue, Feb 25, 2014 at 12:40 PM, Eugene Fotso wrote: > > > >> Hello, > >> I CAN'T seem to find SOLUTION for this issue I am having with > >> "libtacacs.so.1 " > >> > >> *OS= RedHat* > >> * tac_plusRel=F4.0.4.27a* > >> > >> I have installed as required, but every time I attemp to run "tac_plus", I > >> get "*error while loading shared libraries: libtacacs.so.1: cannot open > >> shared object file: No such file or directory"* > >> > >> > >> # /etc/init.d/tac_plus start > >> > >> Starting Tacacs+ server: /opt/tacacs/bin/tac_plus: *error while loading > >> shared libraries: libtacacs.so.1: cannot open shared object file: No such > >> file or directory* > >> tac_plus. > >> > >> I HAVE TRIED ALL the available SOLUTIONS online, but still NOT WORKING: > >> HELP HELP HELP > >> > >> > >> --- > >> > >> *# ./configure >/dev/null* > >> > >> configure: WARNING: i686 not found in cputable > >> > >> configure: WARNING: linux-gnu not found in ostable > >> > >> ./configure: line 8717: *pkg-config: command not found* > >> > >> > >> > >> *# make >/dev/null* > >> > >> processarc.o: In function `process_archive': > >> > >> /opt/TACACS/dpkg-1.14.31/src/processarc.c:173: warning: the use of > >> `tmpnam' is dangerous, better use `mkstemp' > >> > >> archives.o: In function `tarobject': > >> > >> /opt/TACACS/dpkg-1.14.31/src/archives.c:634: undefined reference to > >> `matchpathcon' > >> > >> /opt/TACACS/dpkg-1.14.31/src/archives.c:640: undefined reference to > >> `setfscreatecon' > >> > >> /opt/TACACS/dpkg-1.14.31/src/archives.c:802: undefined reference to > >> `setfscreatecon' > >> > >> /opt/TACACS/dpkg-1.14.31/src/archives.c:804: undefined reference to > >> `freecon' > >> > >> /opt/TACACS/dpkg-1.14.31/src/archives.c:826: undefined reference to > >> `setfscreatecon' > >> > >> /opt/TACACS/dpkg-1.14.31/src/archives.c:618: undefined reference to > >> `is_selinux_enabled' > >> > >> collect2: ld returned 1 exit status > >> > >> make[2]: *** [dpkg] Error 1 > >> > >> make[1]: *** [all-recursive] Error 1 > >> > >> make: *** [all] Error 2 > >> > >> > >> > >> *# cd utils* > >> > >> *# make install* > >> > >> gcc -std=gnu99 -DHAVE_CONFIG_H -I. -I.. > >> -DLOCALEDIR=\"/usr/local/share/locale\" -idirafter ../libcompat -I../lib > >> -g -O2 -MT start-stop-daemon.o -MD -MP -MF .deps/start-stop-daemon.Tpo -c > >> -o start-stop-daemon.o start-stop-daemon.c > >> > >> mv -f .deps/start-stop-daemon.Tpo .deps/start-stop-daemon.Po > >> > >> gcc -std=gnu99 -g -O2 -Wl,-O1 -o start-stop-daemon start-stop-daemon.o > >> ../libcompat/libcompat.a > >> > >> make[1]: Entering directory `/opt/TACACS/dpkg-1.14.31/utils' > >> > >> test -z "/usr/local/sbin" || /bin/mkdir -p "/usr/local/sbin" > >> > >> /usr/bin/install -c 'start-stop-daemon' > >> '/usr/local/sbin/start-stop-daemon' > >> > >> make[1]: Nothing to be done for `install-data-am'. > >> > >> make[1]: Leaving directory `/opt/TACACS/dpkg-1.14.31/utils' > >> > >> -- > >> *Eugene "DeFOT's" FOTSO,* > >> *"Be Well, Do Good Work and Above All, KEEP IN TOUCH!"* > >> > > > > > > > > > -- > Alan McKinnon > alan.mckinnon at gmail.com > > _______________________________________________ > tac_plus mailing list > tac_plus at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/tac_plus From efotso63 at gmail.com Tue Feb 25 18:40:34 2014 From: efotso63 at gmail.com (Eugene Fotso) Date: Tue, 25 Feb 2014 12:40:34 -0600 Subject: [tac_plus] error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory Message-ID: Hello, I CAN'T seem to find SOLUTION for this issue I am having with "libtacacs.so.1 " *OS= RedHat* * tac_plusRel=F4.0.4.27a* I have installed as required, but every time I attemp to run "tac_plus", I get "*error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory"* # /etc/init.d/tac_plus start Starting Tacacs+ server: /opt/tacacs/bin/tac_plus: *error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory* tac_plus. I HAVE TRIED ALL the available SOLUTIONS online, but still NOT WORKING: HELP HELP HELP --- *# ./configure >/dev/null* configure: WARNING: i686 not found in cputable configure: WARNING: linux-gnu not found in ostable ./configure: line 8717: *pkg-config: command not found* *# make >/dev/null* processarc.o: In function `process_archive': /opt/TACACS/dpkg-1.14.31/src/processarc.c:173: warning: the use of `tmpnam' is dangerous, better use `mkstemp' archives.o: In function `tarobject': /opt/TACACS/dpkg-1.14.31/src/archives.c:634: undefined reference to `matchpathcon' /opt/TACACS/dpkg-1.14.31/src/archives.c:640: undefined reference to `setfscreatecon' /opt/TACACS/dpkg-1.14.31/src/archives.c:802: undefined reference to `setfscreatecon' /opt/TACACS/dpkg-1.14.31/src/archives.c:804: undefined reference to `freecon' /opt/TACACS/dpkg-1.14.31/src/archives.c:826: undefined reference to `setfscreatecon' /opt/TACACS/dpkg-1.14.31/src/archives.c:618: undefined reference to `is_selinux_enabled' collect2: ld returned 1 exit status make[2]: *** [dpkg] Error 1 make[1]: *** [all-recursive] Error 1 make: *** [all] Error 2 *# cd utils* *# make install* gcc -std=gnu99 -DHAVE_CONFIG_H -I. -I.. -DLOCALEDIR=\"/usr/local/share/locale\" -idirafter ../libcompat -I../lib -g -O2 -MT start-stop-daemon.o -MD -MP -MF .deps/start-stop-daemon.Tpo -c -o start-stop-daemon.o start-stop-daemon.c mv -f .deps/start-stop-daemon.Tpo .deps/start-stop-daemon.Po gcc -std=gnu99 -g -O2 -Wl,-O1 -o start-stop-daemon start-stop-daemon.o ../libcompat/libcompat.a make[1]: Entering directory `/opt/TACACS/dpkg-1.14.31/utils' test -z "/usr/local/sbin" || /bin/mkdir -p "/usr/local/sbin" /usr/bin/install -c 'start-stop-daemon' '/usr/local/sbin/start-stop-daemon' make[1]: Nothing to be done for `install-data-am'. make[1]: Leaving directory `/opt/TACACS/dpkg-1.14.31/utils' -- *Eugene "DeFOT's" FOTSO,* *"Be Well, Do Good Work and Above All, KEEP IN TOUCH!"* -------------- next part -------------- An HTML attachment was scrubbed... URL: From Michael.Josten at hs-niederrhein.de Fri Feb 28 07:41:51 2014 From: Michael.Josten at hs-niederrhein.de (Josten, Michael) Date: Fri, 28 Feb 2014 08:41:51 +0100 Subject: [tac_plus] accounting & syslog In-Reply-To: <1FD1A2FED7E41F4ABD1D2E2BDDEA519B051B56@mbx030-w1-co-6.exch030.domain.local> References: <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55D8@prometheus> <1FD1A2FED7E41F4ABD1D2E2BDDEA519B051B56@mbx030-w1-co-6.exch030.domain.local> Message-ID: <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55E2@prometheus> I installed several syslog-ng instances and everything works fine. Accounting messages are properly forwarded and processed in the EKL stack. Had to enable the "keep hostnames" option to keep my perl scripts working on the correct host. I didn't thought it was that easy, sorry for the panic :P Thanks and best regards Michael -----Urspr?ngliche Nachricht----- Von: Aaron Wasserott [mailto:aaron.wasserott at viawest.com] Gesendet: Dienstag, 18. Februar 2014 04:45 An: Josten, Michael; 'tac_plus at shrubbery.net' Betreff: RE: accounting & syslog Yes, you would need a syslog daemon on your tacacs server that can send syslog messages over the network. Your local tac_plus daemon would use the local syslog instance, and in your syslog config you would configure the local and export parameters - so you can keep local accounting records as well as send to your syslog server. Then other log-monitored daemons would work the same way, they route locally to syslog, syslog sends to local file and across the network to a remote log host. Not sure what flavor of Linux you are running, but the common rsyslog daemon supports remote logging. http://www.linuxhomenetworking.com/wiki/index.php/Quick_HOWTO_:_Ch05_:_Troubleshooting_Linux_with_syslog#.UwLW3LSSpww Cheers, -----Original Message----- From: tac_plus-bounces at shrubbery.net [mailto:tac_plus-bounces at shrubbery.net] On Behalf Of Josten, Michael Sent: Monday, February 17, 2014 1:41 AM To: 'tac_plus at shrubbery.net' Subject: [tac_plus] accounting & syslog Hello everyone, i went through some posts I found in the mailing list and took a look at the tac_plus.conf manpage. Both accounting method and syslog facility are described so far, but what I miss or maybe just haven't found : How can I send notifications to a remote syslog-ng host ? My guess is, I have to install syslog-ng on both, my tacacs+ host & the syslog-ng / logstash stack host. This is not a big deal, I just want to keep my T+ machine as clean as possible. Thanks in advance Michael -------------- next part -------------- An HTML attachment was scrubbed... URL: _______________________________________________ tac_plus mailing list tac_plus at shrubbery.net http://www.shrubbery.net/mailman/listinfo/tac_plus From efotso63 at gmail.com Fri Feb 28 15:54:09 2014 From: efotso63 at gmail.com (Eugene Fotso) Date: Fri, 28 Feb 2014 09:54:09 -0600 Subject: [tac_plus] error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory In-Reply-To: References: Message-ID: THANK YOU ALL (*Alan McKinnon & heasley * ), for the proposed solution to the pblm @ hand. It helped me address the pblm. *NEW PBLM*: I am using "tac_plus" to login to an application, It is working (Authenticating) for command line (ksh Script), but for login throughj a java based GUI, it is failing with: ... ====== *Thu Feb 27 15:17:48 2014 [573]: session request from tlpri sock=3Thu Feb 27 15:17:48 2014 [17337]: connect from tlpri [X.Y.Z.T]Thu Feb 27 15:17:48 2014 [17337]: Waiting for packetThu Feb 27 15:20:48 2014 [17337]: tlpri: timeout reading fd 3Thu Feb 27 15:20:48 2014 [17337]: Read -1 bytes from tlpri , expecting 12Thu Feb 27 15:20:48 2014 [17337]: tlpri: disconnect* ======= See attached. Thank You On Tue, Feb 25, 2014 at 12:40 PM, Eugene Fotso wrote: > Hello, > I CAN'T seem to find SOLUTION for this issue I am having with > "libtacacs.so.1 " > > *OS= RedHat* > * tac_plusRel=F4.0.4.27a* > > I have installed as required, but every time I attemp to run "tac_plus", I > get "*error while loading shared libraries: libtacacs.so.1: cannot open > shared object file: No such file or directory"* > > > # /etc/init.d/tac_plus start > > Starting Tacacs+ server: /opt/tacacs/bin/tac_plus: *error while loading > shared libraries: libtacacs.so.1: cannot open shared object file: No such > file or directory* > tac_plus. > > I HAVE TRIED ALL the available SOLUTIONS online, but still NOT WORKING: > HELP HELP HELP > > > --- > > *# ./configure >/dev/null* > > configure: WARNING: i686 not found in cputable > > configure: WARNING: linux-gnu not found in ostable > > ./configure: line 8717: *pkg-config: command not found* > > > > *# make >/dev/null* > > processarc.o: In function `process_archive': > > /opt/TACACS/dpkg-1.14.31/src/processarc.c:173: warning: the use of > `tmpnam' is dangerous, better use `mkstemp' > > archives.o: In function `tarobject': > > /opt/TACACS/dpkg-1.14.31/src/archives.c:634: undefined reference to > `matchpathcon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:640: undefined reference to > `setfscreatecon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:802: undefined reference to > `setfscreatecon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:804: undefined reference to > `freecon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:826: undefined reference to > `setfscreatecon' > > /opt/TACACS/dpkg-1.14.31/src/archives.c:618: undefined reference to > `is_selinux_enabled' > > collect2: ld returned 1 exit status > > make[2]: *** [dpkg] Error 1 > > make[1]: *** [all-recursive] Error 1 > > make: *** [all] Error 2 > > > > *# cd utils* > > *# make install* > > gcc -std=gnu99 -DHAVE_CONFIG_H -I. -I.. > -DLOCALEDIR=\"/usr/local/share/locale\" -idirafter ../libcompat -I../lib > -g -O2 -MT start-stop-daemon.o -MD -MP -MF .deps/start-stop-daemon.Tpo -c > -o start-stop-daemon.o start-stop-daemon.c > > mv -f .deps/start-stop-daemon.Tpo .deps/start-stop-daemon.Po > > gcc -std=gnu99 -g -O2 -Wl,-O1 -o start-stop-daemon start-stop-daemon.o > ../libcompat/libcompat.a > > make[1]: Entering directory `/opt/TACACS/dpkg-1.14.31/utils' > > test -z "/usr/local/sbin" || /bin/mkdir -p "/usr/local/sbin" > > /usr/bin/install -c 'start-stop-daemon' > '/usr/local/sbin/start-stop-daemon' > > make[1]: Nothing to be done for `install-data-am'. > > make[1]: Leaving directory `/opt/TACACS/dpkg-1.14.31/utils' > > -- > *Eugene "DeFOT's" FOTSO,* > *"Be Well, Do Good Work and Above All, KEEP IN TOUCH!"* > -- *Eugene "DeFOT's" FOTSO,* *"Be Well, Do Good Work and Above All, KEEP IN TOUCH!"* -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- =========== STOP [APP] userID/Passwd ============ # sh ShutDown.sh (ALL DEFINED AS WELL in tac_plus.conf) # The [APPS] Server on host "localhost" was successfully shutdown # Thu Feb 27 15:32:06 CST 2014 ==============SUCCESSFUL AUTHENTICATION=============================== Thu Feb 27 15:31:57 2014 [573]: session request from tlpri sock=3 Thu Feb 27 15:31:57 2014 [20330]: connect from tlpri [X.Y.Z.T] Thu Feb 27 15:31:57 2014 [20330]: Waiting for packet Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: name=X.Y.Z.T attr=key Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: no host named X.Y.Z.T Thu Feb 27 15:31:57 2014 [20330]: cfg_get_phvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: name=tlpri attr=prompt Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: no host named tlpri Thu Feb 27 15:31:57 2014 [20330]: cfg_get_phvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: Read AUTHEN/START size=43 Thu Feb 27 15:31:57 2014 [20330]: validation request from tlpri Thu Feb 27 15:31:57 2014 [20330]: PACKET: key=XXXX[APP]6.0! Thu Feb 27 15:31:57 2014 [20330]: version 192 (0xc0), type 1, seq no 1, flags 0x1 Thu Feb 27 15:31:57 2014 [20330]: session_id 3900892316 (0xe882e49c), Data length 31 (0x1f) Thu Feb 27 15:31:57 2014 [20330]: End header Thu Feb 27 15:31:57 2014 [20330]: type=AUTHEN/START, priv_lvl = 0 Thu Feb 27 15:31:57 2014 [20330]: action=login Thu Feb 27 15:31:57 2014 [20330]: authen_type=ascii Thu Feb 27 15:31:57 2014 [20330]: service=unknown 0 Thu Feb 27 15:31:57 2014 [20330]: user_len=4 port_len=4 (0x4), rem_addr_len=9 (0x9) Thu Feb 27 15:31:57 2014 [20330]: data_len=6 Thu Feb 27 15:31:57 2014 [20330]: User: Thu Feb 27 15:31:57 2014 [20330]: root Thu Feb 27 15:31:57 2014 [20330]: port: Thu Feb 27 15:31:57 2014 [20330]: JAVA Thu Feb 27 15:31:57 2014 [20330]: rem_addr: Thu Feb 27 15:31:57 2014 [20330]: Somewhere Thu Feb 27 15:31:57 2014 [20330]: data: Thu Feb 27 15:31:57 2014 [20330]: Passwd Thu Feb 27 15:31:57 2014 [20330]: End packet Thu Feb 27 15:31:57 2014 [20330]: Authen Start request Thu Feb 27 15:31:57 2014 [20330]: cfg_get_value: name=root isuser=1 attr=login rec=1 Thu Feb 27 15:31:57 2014 [20330]: cfg_get_pvalue: returns cleartext Passwd Thu Feb 27 15:31:57 2014 [20330]: cfg_get_value: name=root isuser=1 attr=login rec=1 Thu Feb 27 15:31:57 2014 [20330]: cfg_get_pvalue: returns cleartext Passwd Thu Feb 27 15:31:57 2014 [20330]: choose_authen chose default_fn Thu Feb 27 15:31:57 2014 [20330]: Calling authentication function Thu Feb 27 15:31:57 2014 [20330]: cfg_get_value: name=root isuser=1 attr=nopassword rec=1 Thu Feb 27 15:31:57 2014 [20330]: cfg_get_value: recurse group = Admin Thu Feb 27 15:31:57 2014 [20330]: cfg_get_intvalue: returns 0 Thu Feb 27 15:31:57 2014 [20330]: Writing AUTHEN/GETPASS size=28 Thu Feb 27 15:31:57 2014 [20330]: PACKET: key=XXXX[APP]6.0! Thu Feb 27 15:31:57 2014 [20330]: version 192 (0xc0), type 1, seq no 2, flags 0x1 Thu Feb 27 15:31:57 2014 [20330]: session_id 3900892316 (0xe882e49c), Data length 16 (0x10) Thu Feb 27 15:31:57 2014 [20330]: End header Thu Feb 27 15:31:57 2014 [20330]: type=AUTHEN status=5 (AUTHEN/GETPASS) flags=0x1 Thu Feb 27 15:31:57 2014 [20330]: msg_len=10, data_len=0 Thu Feb 27 15:31:57 2014 [20330]: msg: Thu Feb 27 15:31:57 2014 [20330]: Password: Thu Feb 27 15:31:57 2014 [20330]: data: Thu Feb 27 15:31:57 2014 [20330]: End packetThu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: no host named X.Y.Z.T Thu Feb 27 15:31:57 2014 [20330]: cfg_get_phvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: name=tlpri attr=prompt Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: no host named cienactlori Thu Feb 27 15:31:57 2014 [20330]: cfg_get_phvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: Read AUTHEN/CONT size=27 Thu Feb 27 15:31:57 2014 [20330]: PACKET: key=XXXX[APP]6.0! Thu Feb 27 15:31:57 2014 [20330]: version 192 (0xc0), type 1, seq no 3, flags 0x1 Thu Feb 27 15:31:57 2014 [20330]: session_id 3900892316 (0xe882e49c), Data length 15 (0xf) Thu Feb 27 15:31:57 2014 [20330]: End header Thu Feb 27 15:31:57 2014 [20330]: type=AUTHEN/CONT Thu Feb 27 15:31:57 2014 [20330]: user_msg_len 6 (0x6), user_data_len 4 (0x4) Thu Feb 27 15:31:57 2014 [20330]: flags=0x0 Thu Feb 27 15:31:57 2014 [20330]: User msg: Thu Feb 27 15:31:57 2014 [20330]: Passwd Thu Feb 27 15:31:57 2014 [20330]: User data: Thu Feb 27 15:31:57 2014 [20330]: NONE Thu Feb 27 15:31:57 2014 [20330]: End packet Thu Feb 27 15:31:57 2014 [20330]: cfg_get_value: name=root isuser=1 attr=login rec=1 Thu Feb 27 15:31:57 2014 [20330]: cfg_get_pvalue: returns cleartext Passwd Thu Feb 27 15:31:57 2014 [20330]: cfg_get_value: name=root isuser=1 attr=expires rec=1 Thu Feb 27 15:31:57 2014 [20330]: cfg_get_value: recurse group = Admin Thu Feb 27 15:31:57 2014 [20330]: cfg_get_pvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: cfg_get_value: name=root isuser=1 attr=acl rec=1 Thu Feb 27 15:31:57 2014 [20330]: cfg_get_value: recurse group = Admin Thu Feb 27 15:31:57 2014 [20330]: cfg_get_pvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: login query for 'root' port JAVA from tlpri accepted Thu Feb 27 15:31:57 2014 [20330]: Writing AUTHEN/SUCCEED size=18 Thu Feb 27 15:31:57 2014 [20330]: PACKET: key=XXXX[APP]6.0! Thu Feb 27 15:31:57 2014 [20330]: version 192 (0xc0), type 1, seq no 4, flags 0x1 Thu Feb 27 15:31:57 2014 [20330]: session_id 3900892316 (0xe882e49c), Data length 6 (0x6) Thu Feb 27 15:31:57 2014 [20330]: End header Thu Feb 27 15:31:57 2014 [20330]: type=AUTHEN status=1 (AUTHEN/SUCCEED) flags=0x0 Thu Feb 27 15:31:57 2014 [20330]: msg_len=0, data_len=0 Thu Feb 27 15:31:57 2014 [20330]: msg: Thu Feb 27 15:31:57 2014 [20330]: data: Thu Feb 27 15:31:57 2014 [20330]: End packet Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: name=X.Y.Z.T attr=key Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: no host named X.Y.Z.T Thu Feb 27 15:31:57 2014 [20330]: cfg_get_phvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: name=tlpri attr=prompt Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: no host named tlpri Thu Feb 27 15:31:57 2014 [20330]: cfg_get_phvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: tlpri: disconnect ==========================FAILED TACACS AUTHENTICATION ================================== ======= Loggin [APP] through Web Client ======= =======Fri Feb 28, 2014 Loggin [APP] through Web Client ======= Fri Feb 28 09:35:45 2014 [573]: session request from tlpri sock=3 Fri Feb 28 09:35:45 2014 [3373]: connect from tlpri [X.Y.Z.T] Fri Feb 28 09:35:45 2014 [3373]: Waiting for packet Fri Feb 28 09:36:08 2014 [3373]: tlpri : fd 3 eof (connection closed) Fri Feb 28 09:36:08 2014 [3373]: Read -1 bytes from tlpri , expecting 12 Fri Feb 28 09:36:08 2014 [3373]: tlpri: disconnect Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: name=X.Y.Z.T attr=key Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: no host named X.Y.Z.T Thu Feb 27 15:31:57 2014 [20330]: cfg_get_phvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: name=tlpri attr=prompt Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: no host named tlpri Thu Feb 27 15:31:57 2014 [20330]: cfg_get_phvalue: returns NULL Thu Feb 27 15:31:57 2014 [20330]: Waiting for packet Thu Feb 27 15:31:57 2014 [20330]: cfg_get_hvalue: name=X.Y.Z.T attr=key From heas at shrubbery.net Fri Feb 28 16:07:34 2014 From: heas at shrubbery.net (heasley) Date: Fri, 28 Feb 2014 16:07:34 +0000 Subject: [tac_plus] error while loading shared libraries: libtacacs.so.1: cannot open shared object file: No such file or directory In-Reply-To: References: Message-ID: <20140228160734.GA26024@shrubbery.net> Fri, Feb 28, 2014 at 09:54:09AM -0600, Eugene Fotso: > *NEW PBLM*: I am using "tac_plus" to login to an application, It is working > (Authenticating) for command line (ksh Script), > but for login throughj a java based GUI, it is failing with: > ... > Thu Feb 27 15:17:48 2014 [573]: session request from tlpri sock=3 Thu Feb 27 15:17:48 2014 [17337]: connect from tlpri [X.Y.Z.T] Thu Feb 27 15:17:48 2014 [17337]: Waiting for packet Thu Feb 27 15:20:48 2014 [17337]: tlpri: timeout reading fd 3 Thu Feb 27 15:20:48 2014 [17337]: Read -1 bytes from Thu Feb 27 15:20:48 2014 [17337]: tlpri: disconnect* seems self-explanitory; no packet arrived from the client after the connection.