Ubuntu
pam package

minimum_uid value hard coded in krb5 config template

Bug #578923 reported by Kevin Otte on 2010-05-11

This bug report is a duplicate of: Bug #369575: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?. Edit Remove

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	pam (Ubuntu)	Invalid	Undecided	Unassigned

Bug Description

The template file /usr/share/pam-configs/krb5 has a minimum_uid of 1000 hard coded into it. In my work environment some valid user accounts have UIDs in the 500-999 range. I have to manually update the minimum_uid setting in this file after every upgrade. Ideally this value should be pulled in from another file (something like /etc/default/pam_krb5 ?) as the files in /etc/pam.d are being generated.

ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: libpam-runtime 1.1.1-2ubuntu2
ProcVersionSignature: Ubuntu 2.6.32-21.32-generic 2.6.32.11+drm33.2
Uname: Linux 2.6.32-21-generic i686
Architecture: i386
Date: Tue May 11 14:32:18 2010
PackageArchitecture: all
ProcEnviron:
PATH=(custom, user)
LANG=en_US.utf8
SHELL=/bin/bash
SourcePackage: pam

Tags:

Revision history for this message

Kevin Otte (nivex) wrote on 2010-05-11:

Dependencies.txt Edit (599 bytes, text/plain; charset="utf-8")

Revision history for this message

Steve Langasek (vorlon) wrote on 2010-05-12:

> Ideally this value should be pulled in from another file (something
> like /etc/default/pam_krb5 ?) as the files in /etc/pam.d
> are being generated.

Certainly not. The intent is that you set your preference *in* /etc/pam.d/common-*, which are still config files and managed as such.

There's a bug in how options are managed for the pam_krb5 module in particular, bug #369575; however, that will be fixed shortly in Ubuntu.