, 1 min read
Linux pam and /etc/shells
Original post is here eklausmeier.goip.de/blog/2015/10-05-linux-pam-and-etcshells.
I learned the hard way that a user in /etc/passwd not having a shell specified in /etc/shells is not able to log-on.
On Ubuntu /etc/shells looks like this:
/bin/sh
/bin/dash
/bin/bash
/bin/rbash
/usr/bin/tmux
/usr/bin/screen
On Arch it looks like this:
/bin/sh
/bin/bash
So if you provide a user with shell /usr/bin/bash, he cannot log-in, thanks to pam_shells.so.
See man shells, man pam_shells, and authentication error with shell=/usr/bin/bash.
Also see Creating User Account With Empty Password on Linux.