Thanks for your report. Actually, the problem is not that this user has an unknown password (you can check in /etc/passwd that it's empty). It's that password-less login ("Don't ask for password on login") takes precedence over the fact that the account is disabled. And since password-less login is only allowed for GDM (the login screen), you can only login though it.
The idea of password-less login was to allow people to log in easily into their graphical session. Thus, terminal login was not allowed, and I don't think that's really needed. The screensaver lock, OTOH, should be changed to work as GDM, since you can always circumvent it by going back to GDM. I think the other confusing point is that the account is said to be disabled, while the user can still log in. The easiest solution is to disable password-less login for disabled accounts, and make it impossible to choose this without re-enabling the account. I don't think there's another simple solution, since they would all involve tweaking security configuration files in a weird fashion, which is never a good idea. -- Disabled accounts are still allowed password-less login via GDM https://bugs.launchpad.net/bugs/630430 You received this bug notification because you are a member of Ubuntu Desktop Bugs, which is subscribed to gnome-system-tools in ubuntu. -- desktop-bugs mailing list desktop-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/desktop-bugs