Public bug reported:
Binary package hint: libpam-gnome-keyring
On a system set up to authenticate to an external service, such as LDAP,
Active Directory, or Kerberos: When the password is changed on the
external service (e.g. due to a forgotten password+reset or a forced
periodic password change where the user happened to log in on a
different machine when the change came due), the keyring is not
unlockable with the new password. This means that unless the user
remembers their old password, and knows how to change the keyring
password, the keyring must be wiped, losing all the keys stored in the
keyring.
This bug is distinct from several other similar bugs, in that it the
other bugs relate to the keyring password not being updated properly
when the password is changed on the current system. This one concerns
only the situation where the password is changed externally.
One possible (but very ugly) solution is to simply drop the current
keyring/passphrase and start anew when the user successfully logs in
using a password that doesn't unlock the keyring. Better would be to
somehow change the keyring password so that the keyring can be unlocked
with the new password.
This is in Ubuntu Jaunty.
** Affects: gnome-keyring (Ubuntu)
Importance: Undecided
Status: New
** Description changed:
Binary package hint: libpam-gnome-keyring
On a system set up to authenticate to an external service, such as LDAP,
Active Directory, or Kerberos: When the password is changed on the
external service (e.g. due to a forgotten password+reset or a forced
periodic password change where the user happened to log in on a
different machine when the change came due), the keyring is not
unlockable with the new password. This means that unless the user
remembers their old password, and knows how to change the keyring
password, the keyring must be wiped, losing all the keys stored in the
keyring.
This bug is distinct from several other similar bugs, in that it the
other bugs relate to the keyring password not being updated properly
when the password is changed on the current system. This one concerns
only the situation where the password is changed externally.
+ One possible (but very ugly) solution is to simply drop the current
+ keyring/passphrase and start anew when the user successfully logs in
+ using a password that doesn't unlock the keyring. Better would be to
+ somehow change the keyring password so that the keyring can be unlocked
+ with the new password.
+
This is in Ubuntu Jaunty.
--
libpam-gnome-keyring: keyring password should be updated or cleared when a new
system password is used
https://bugs.launchpad.net/bugs/322827
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
