Univention Bugzilla – Bug 37015
/etc/pam.d/kdm allows normal user login
Last modified: 2018-04-14 13:47:07 CEST
Please check if a test case is possible. +++ This bug was initially created as a clone of Bug #36743 +++ PT 4.0-0 UCS-4 uses KDM, while UCS-3 used GDM. A PAM file is only provided for GDM by UCR, so a "normal" user can still login: # egrep -v '^#|^$' /etc/pam.d/[gk]dm /etc/pam.d/gdm:@include common-auth /etc/pam.d/gdm:account required pam_access.so accessfile=/etc/security/access-gdm.conf listsep=, maxent=0x400001 /etc/pam.d/gdm:@include common-account /etc/pam.d/gdm:@include common-session /etc/pam.d/gdm:@include common-password /etc/pam.d/kdm:auth required pam_nologin.so /etc/pam.d/kdm:auth required pam_env.so readenv=1 /etc/pam.d/kdm:auth required pam_env.so readenv=1 envfile=/etc/default/locale /etc/pam.d/kdm:@include common-auth /etc/pam.d/kdm:session required pam_limits.so /etc/pam.d/kdm:@include common-account /etc/pam.d/kdm:@include common-password /etc/pam.d/kdm:@include common-session # dpkg -S /etc/univention/templates/files/etc/pam.d/?dm univention-pam: /etc/univention/templates/files/etc/pam.d/gdm # dpkg-query -W univention-pam univention-pam 8.0.2-1.257.201411061731