[Help] User: root@localhost authentication with wrong Pw!!!

Moderator: crythias

Post Reply
skullz
Znuny superhero
Posts: 618
Joined: 24 Feb 2012, 03:58
Znuny Version: LTS and Features
Real Name: Mo Azfar
Location: Kuala Lumpur, MY
Contact:

[Help] User: root@localhost authentication with wrong Pw!!!

Post by skullz »

Hi all,

I found out in the log "User: root@localhost authentication with wrong Pw!!! (Method: sha256, REMOTE_ADDR: AAA.BBB.CCC.DDD)"

The remote address is server itself. As per below topic and going thorough the file system, it is because of the SupportDataCollector

viewtopic.php?t=28552

However, since we enabled the ''PasswordMaxLoginFailed'' at Password policy, the root@localhost got locked out.

I only have 3 solution now,
1) disable PasswordMaxLoginFailed
2) change root@localhost username
3) change the user as someone else account instead of root@localhost at $OTRS_HOME/Kernel/System/SupportDataCollector/Plugin/OTRS/DefaultUser.pm

Any additional idea ?

Thanks
Last edited by skullz on 24 Mar 2017, 14:27, edited 1 time in total.
jojo
Znuny guru
Posts: 15019
Joined: 26 Jan 2007, 14:50
Znuny Version: Git Master
Contact:

Re: [Help] User: root@localhost authentication with wrong Pw!!!

Post by jojo »

as root@localhost should not be used to work with and the password can be reset by another admin, I see no issue here.
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master

Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
skullz
Znuny superhero
Posts: 618
Joined: 24 Feb 2012, 03:58
Znuny Version: LTS and Features
Real Name: Mo Azfar
Location: Kuala Lumpur, MY
Contact:

Re: [Help] User: root@localhost authentication with wrong Pw!!!

Post by skullz »

jojo wrote:as root@localhost should not be used to work with and the password can be reset by another admin, I see no issue here.
Thanks for the reply,

yes..totally no issue as based on technical point..

However, based on logic point, this is an issue..
For example, in ticket history, value set by generic agent (or maybe another process) is executed by 'root@localhost.
How come root@localhost still working but the account is invalid ?'
jojo
Znuny guru
Posts: 15019
Joined: 26 Jan 2007, 14:50
Znuny Version: Git Master
Contact:

Re: [Help] User: root@localhost authentication with wrong Pw!!!

Post by jojo »

locking it would set him to invalid_tmp and not invalid
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master

Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
skullz
Znuny superhero
Posts: 618
Joined: 24 Feb 2012, 03:58
Znuny Version: LTS and Features
Real Name: Mo Azfar
Location: Kuala Lumpur, MY
Contact:

Re: [Help] User: root@localhost authentication with wrong Pw!!!

Post by skullz »

jojo wrote:locking it would set him to invalid_tmp and not invalid
opss..i mean invalid_tmp..but still it indicates invalid
Post Reply