ccreds_chkpwd miss setuid
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| libpam-ccreds (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: libpam-ccreds
ccreds_chkpwd must have setuid rights because a program as "gnome-screensaver" must use it.
We use ccreds with an ldap and if computer isn't in the network, the authentification in gnome-screensaver doen't work.
Ther is a old changelog, but this is broken in the karmic package :
libpam-ccreds (4-3) unstable; urgency=low
* Add a setuid ccreds_chkpwd binary to allow non root programs to verify the
password. Patch based on http://
numerous cleanups. (Closes: #358818)
-- Guido Guenther <email address hidden> Fri, 26 Oct 2007 16:31:09 +0200
ProblemType: Bug
Architecture: amd64
Date: Tue Nov 10 17:27:50 2009
DistroRelease: Ubuntu 9.10
NonfreeKernelMo
Package: libpam-ccreds 10-1
ProcEnviron:
LANG=fr_FR.UTF-8
SHELL=/bin/bash
ProcVersionSign
SourcePackage: libpam-ccreds
Uname: Linux 2.6.31-14-generic x86_64
| Guilhem Lettron (guilhem-fr) wrote | #1 |
| Karl M. Davis (karlmdavis) wrote | #2 |
| Franz (franz.pammer) wrote | #3 |
| ralfgro (ubuntu-pirx) wrote | #4 |
| Mathias Gug (mathiaz) wrote | #5 |
| Changed in libpam-ccreds (Ubuntu): | |
| status: | New → Fix Released |
| Mike Javorski (mike-javorski) wrote | #6 |
The need for setuid was also discussed back when the Redhat folks first got ccreds working with screensaver unlocks: https:/