Package: xlockmore Version: 1:5.22-1 Severity: normal Using xlock to lock my screen, i entered completly stupid password, and it gets unlocked ! System overall authentification works correctly, just not that part.
After some checks, it seems it says ok, while trying to check for root authentication. -- /etc/pam.d/xlock: (default) @include common-auth -- /etc/pam.d/xlock: (other attempt, with same result) @include common-auth @include common-account @include common-password @include common-session -- /etc/pam.d/common-auth: auth required pam_nologin.so auth sufficient pam_ldap.so auth required pam_unix.so nullok_secure use_first_pass -- /etc/pam.d/xlock: (other attempt, with same result) auth required pam_nologin.so auth required pam_unix.so re-compiled xlock with DEBUG set in passwd.c: $ xlock PAM: Before: UID (10352), EUID (10352) PAM_conv: message of style (1) received + Message is: (Password: ) + Message style: PAM_PROMPT_ECHO_OFF + Response is: (aoeu). Return Code is: (0) PAM: pam_authenticate returns code (7) PAM_conv: message of style (1) received + Message is: (Password: ) + Message style: PAM_PROMPT_ECHO_OFF + Response is: (aoeu). Return Code is: (0) PAM: After: UID (10352), EUID (10352) xlock.c: getPassword: 2617done[1] $ Recompiled the package after adding '--disable-allow-root' in the debian/rules for xlockmore. It works fine, though "xlock -allowroot" would still allow any password to unlock the session. I'd rather have a lock that CAN'T be unlocked by anyone (correct user included), than a lock that CAN be unlocked by anyone. :) -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages xlockmore depends on: ii libc6 2.3.6.ds1-4 GNU C Library: Shared libraries ii libgcc1 1:4.1.1-13 GCC support library ii libice6 1:1.0.0-3 X11 Inter-Client Exchange library ii libpam0g 0.79-3.2 Pluggable Authentication Modules l ii libsm6 1:1.0.1-2 X11 Session Management library ii libstdc++6 4.1.1-13 The GNU Standard C++ Library v3 ii libx11-6 2:1.0.0-8 X11 client-side library ii libxext6 1:1.0.1-2 X11 miscellaneous extension librar ii libxmu6 1:1.0.2-2 X11 miscellaneous utility library Versions of packages xlockmore recommends: ii libpam-modules 0.79-3.2 Pluggable Authentication Modules f -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
