.google_authenticator own by root

ghooton · September 27, 2022, 11:43am

When a normal user runs google_authenticator the file .google_authenticator is own by root
-r--------. 1 root nogroup 117 Sep 27 12:29 .google_authenticator

In /var/log/secure I see :
ep 27 12:21:30 localhost sshd(pam_google_authenticator)[8475]: Secret file “/user/undergrads/John/.ssh/google_authenticator” must be owned by “John”

I have
google-authenticator-1.07-1.el8.x86_64

UPDATE:
Any file a user creates in .ssh is own by root.
How do I fix that?

ghooton · September 27, 2022, 1:26pm

OK, I have a more general problem.
Users that are authentication using openldap do not own any files they create, thy are own by root.

tjdoyle · September 27, 2022, 1:28pm

Hi,

Sounds permissions are not set correctly to me, what’s the output of:

ls -ld /home/$USER/.ssh

Also is this on Rocky 8 or 9 and how did you install google-authenticator-1.07-1.el8.x86_64?

Regards Tom.

ghooton · September 27, 2022, 2:02pm

I have discovered that ALL the LDAP users have this problem.
When they create a new file anywhere in their home dirs it get own by root

tjdoyle · September 27, 2022, 2:36pm

Hi,

So users not logging in through LDAP, can create files with the correct permissions?

Regards Tom.

ghooton · September 27, 2022, 2:55pm

Problem Fixed:
The issue was with the NFS shares I use for home dirs.
I had a wrong setting on the TrueNas server.

Topic		Replies	Views
Rocky Linux 9 Google Auth install guide? Rocky Linux General	4	2427	August 25, 2023
Why are protected files being deleted? Rocky Linux General rocky-linux-9	11	207	April 2, 2024
Authentic share samba in gnome Rocky Linux General	1	251	August 25, 2023
ROCKY 9 wheel user doesn't seem to have full access Rocky Linux General	2	583	August 25, 2023
LDAP not authenticating users for login Rocky Linux General	21	3652	August 25, 2023

.google_authenticator own by root

Related Topics