Closed jbarop closed 1 year ago
Have the same problem with 0.5.0, switching back to 0.4.4 does work fine though.
If you can run without SSH_AUDIT_ENABLED
you can workaround via:
SSH_AUDIT_ENABLED=false
to your bastion.env
filedocker-compose down -v
(stop the stack and remove old volumes)docker-compose up
(should work now if configured correctly)Looked into the root issue, but no joy yet.
The reason you're getting a password prompt is because of a missing or misconfigured PAM module. To use chsh
without a password prompt, two things must be true.
The pam_shells.so
module must be active (usually in /etc/pam.d/chsh
):
auth required pam_shells.so
And the current shell you're using, plus the shell you want to change to, must be listed in /etc/shells
.
I'll open a PR with the fix.
@joshes is there a security concern with disabling that flag?
the simple fix would be to run usermod -s /usr/bin/sudosh root
instead in /etc/init.d/ssh-audit script
Fixed in master now
Hi,
I can't get the latest version to run. 0.4.4 works fine.
It ask for an password and then outputs:
System: macOS 10.14.5 with Docker version 18.09.2, build 6247962