[Bug 952771] [NEW] Gnome Screensaver should handle expired password tokens
Launchpad Bug Tracker
952771 at bugs.launchpad.net
Thu Nov 29 12:19:23 UTC 2012
You have been subscribed to a public bug by Ubuntu Foundations Team Bug Bot (crichton):
Gnome Screensaver should handle expired password tokens. Currently it does
not. It just unlocks screen, so in case you're using kerberos - your credentials cache stays expired and you need to manually change your password or logout and then login again (lightdm, gdm, etc. do handle expired password tokens).
Actually, there is a mainstream bugreport with patch solving the problem, but it seems noone is interested in solving this issue:
https://bugzilla.gnome.org/show_bug.cgi?id=648875
The patch provided by Brian C. Huffman solves the issue and is compatible with today's GS behavior (it can be emulated using special pam config, see comment 9 there).
Both solutions using this patch (with and without "passwd required pam_permit.so") tested by me with oneiric's gnome-screensaver-3.2.0-ubuntu1 and work as expected.
This is really nice improvement for big corporate environments. So, It would be nice to apply this patch even if it's not in upstream
yet.
** Affects: gnome-screensaver
Importance: Medium
Status: New
** Affects: gnome-screensaver (Ubuntu)
Importance: Undecided
Status: Confirmed
** Tags: expired gnome-screensaver kerberos pam patch
--
Gnome Screensaver should handle expired password tokens
https://bugs.launchpad.net/bugs/952771
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is subscribed to the bug report.
More information about the Ubuntu-sponsors
mailing list