I started a new box and something is wrong with the login system. It is not behaving like I had ever expereinced. You can login into the system with any random password, but su - is restricted to the proper passwords.
[ruben@flatbush 101CANON]$ ssh -l ruben -p 2222newbox
Password:
Tunnel device open failed.
Could not request tunnel forwarding.
auth=perm_denied
auth=success
cred=success
cred=success
Last login: Tue Oct 31 16:13:17 2017 from xx.xxx.xx.xx
%PAM-1.0
auth requisite pam_nologin.so
auth required pam_tally.so onerr=succeed file=/var/log/faillog
auth required pam_shells.so
auth include system-auth
auth [success=2 default=ok] pam_debug.so auth=perm_denied cred=success
auth [default=reset] pam_debug.so auth=success cred=perm_denied
auth [success=done default=die] pam_debug.so
account required pam_access.so debug
account required pam_nologin.so
account include system-auth
password include system-auth
session optional pam_loginuid.so
session include system-auth
session optional pam_motd.so motd=/etc/motd
session optional pam_mail.so dir=/var/spool/mail standard quiet
-session optional pam_elogind.so
session required pam_env.so
~
"system-login" 22L, 823C
#%PAM-1.0
auth required pam_unix.so debug try_first_pass nullok
auth optional pam_permit.so
auth required pam_env.so
account required pam_unix.so
account optional pam_permit.so
account required pam_time.so
password required pam_unix.so debug try_first_pass nullok sha512 shadow
password optional pam_permit.so
session required pam_limits.so
session required pam_unix.so
session optional pam_permit.so
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
"/etc/pam.d/system-auth" 16L, 454C
@mrbrklyn Please but shell output inside
code constructs:
??
I meant to say that you should put file content, shell output etc. inside the "code" boxes.
Put your output inside code tags.