All,
I've got a couple of FreeBSD 8.3 boxes and have a wierd problem where changing my password does not appear to work.
I can run the command, enter the new password, it doesn't complain, yet when I attempt to log in again via SSH, my old password is the only way to get in.
However, if I check the contents of /etc/master.passwd the line for my user account has been updated with a new hash.
One of the machines in question is vanilla BIND DNS server, and up to date via freebsd-update. The other one is a mail relay and runs sendmail only.
The machine is fairly well firewalled off from the internet and is currently up to date with security hotfixes: only incoming port 53 tcp/udp is allowed through the ACL in front of it (no SSH allowed into our network) - so I'm reasonably confident it isn't likely to have been hacked.
Any idea how I can troubleshoot further? I can't see any diagnostic info available from the passwd command (no verbose option) and the hash does seem to update...
I've got a couple of FreeBSD 8.3 boxes and have a wierd problem where changing my password does not appear to work.
I can run the command, enter the new password, it doesn't complain, yet when I attempt to log in again via SSH, my old password is the only way to get in.
However, if I check the contents of /etc/master.passwd the line for my user account has been updated with a new hash.
One of the machines in question is vanilla BIND DNS server, and up to date via freebsd-update. The other one is a mail relay and runs sendmail only.
The machine is fairly well firewalled off from the internet and is currently up to date with security hotfixes: only incoming port 53 tcp/udp is allowed through the ACL in front of it (no SSH allowed into our network) - so I'm reasonably confident it isn't likely to have been hacked.
Any idea how I can troubleshoot further? I can't see any diagnostic info available from the passwd command (no verbose option) and the hash does seem to update...
