題 pam_mount錯誤“crypt_activate_by_passphrase:不允許操作”


我正在嘗試在OpenSuSE上設置加密的主目錄。

一切正常,直接登錄,但我希望主目錄通過 ssh 同樣。當我嘗試 ssh 到機器,並提供密碼,以下顯示 /var/log/messages

Sep 20 16:03:16 linux-bd9o sshd[11921]: Accepted keyboard-interactive/pam for test from ::1 port 37227 ssh2
Sep 20 16:03:16 linux-bd9o sshd[11921]: pam_mount(pam_mount.c:172): conv->conv(...): Conversation error
Sep 20 16:03:16 linux-bd9o sshd[11921]: pam_mount(pam_mount.c:476): warning: could not obtain password interactively either
Sep 20 16:03:16 linux-bd9o sshd[11921]: pam_mount(mount.c:65): Messages from underlying mount program:
Sep 20 16:03:16 linux-bd9o sshd[11921]: pam_mount(mount.c:69): NOTE: mount.crypt does not support utab (systems with no mtab or read-only mtab) yet. This means that you will temporarily need to call umount.crypt(8) rather than umount(8) to get crypto volumes unmounted.
Sep 20 16:03:16 linux-bd9o sshd[11921]: pam_mount(mount.c:69): /usr/sbin/mount.crypt: dmcrypt cipher ignored for LUKS volumes
Sep 20 16:03:17 linux-bd9o sshd[11921]: pam_mount(mount.c:69): crypt_activate_by_passphrase: Operation not permitted
Sep 20 16:03:17 linux-bd9o sshd[11921]: pam_mount(pam_mount.c:521): mount of /home/test.img failed

同樣的錯誤, crypt_activate_by_passphrase: Operation not permitted,當我嘗試跑步時出現

cd /home
mount test.img test

為了澄清,我想首先修復錯誤,因為我至少可以遵循給出的SSH配方 這個姐姐的問題,如果不修改 /etc/pam.d/sshd。無法通過命令行掛載很煩人。

關鍵在於CBC。我用它重新編碼了它 這些說明,但行為是相同的 - 本地登錄工作,SSH或命令行 mount 失敗。 (奇怪的是,八進制轉儲確實發生了變化,也許會有隨機信息來阻止密鑰中的表查找。)


5
2017-09-20 23:17


起源




答案: