ccreds_chkpwd miss setuid
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libpam-ccreds (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: libpam-ccreds
ccreds_chkpwd must have setuid rights because a program as "gnome-screensaver" must use it.
We use ccreds with an ldap and if computer isn't in the network, the authentification in gnome-screensaver doen't work.
Ther is a old changelog, but this is broken in the karmic package :
libpam-ccreds (4-3) unstable; urgency=low
* Add a setuid ccreds_chkpwd binary to allow non root programs to verify the
password. Patch based on http://
numerous cleanups. (Closes: #358818)
-- Guido Guenther <email address hidden> Fri, 26 Oct 2007 16:31:09 +0200
ProblemType: Bug
Architecture: amd64
Date: Tue Nov 10 17:27:50 2009
DistroRelease: Ubuntu 9.10
NonfreeKernelMo
Package: libpam-ccreds 10-1
ProcEnviron:
LANG=fr_FR.UTF-8
SHELL=/bin/bash
ProcVersionSign
SourcePackage: libpam-ccreds
Uname: Linux 2.6.31-14-generic x86_64
The need for setuid was also discussed back when the Redhat folks first got ccreds working with screensaver unlocks: https:/ /bugzilla. redhat. com/show_ bug.cgi? id=151914