Activity log for bug #882255

Date Who What changed Old value New value Message
2011-10-26 20:18:02 Heiner Geisenberg bug added bug
2011-10-30 19:20:53 Alessandro Menti affects ubuntu ubiquity (Ubuntu)
2011-10-30 19:21:47 Alessandro Menti affects ubiquity (Ubuntu) ubuntu
2011-11-01 21:20:53 Launchpad Janitor ubuntu: status New Confirmed
2011-11-01 21:27:33 Joseph Harrietha bug added subscriber Joseph Harrietha
2011-11-04 18:55:59 C de-Avillez bug added subscriber C de-Avillez
2011-11-05 14:09:28 Alessandro Menti description If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducable even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducable even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to perform administrative actions.
2011-11-05 14:10:06 Alessandro Menti affects ubuntu sudo (Ubuntu)
2011-11-05 14:11:02 Alessandro Menti summary No root access after setting password to 'None' No administrative actions possible (password refused) after enabling passwordless login
2011-11-05 17:31:18 Dave Gilbert sudo (Ubuntu): importance Undecided High
2011-11-05 17:31:26 Dave Gilbert sudo (Ubuntu): status Confirmed Triaged
2011-11-05 18:44:25 Alessandro Menti description If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducable even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to perform administrative actions. If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducible even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to Workaround: -If you can not perform administrative actions but can still login without a password, open a terminal and type "passwd". This command should prompt you for a new password and change it without any problems. -If you can not login, you can reset your password by booting into recovery mode and changing it there. Follow the instructions at <http://psychocats.net/ubuntu/resetpassword>. You may also choose to use a password for your account and to enable autologin at the same time. This choice will enable you to benefit the advantage of not entering a password at boot time with the security of Ubuntu requiring your password when attempting to perform privileged actions.
2011-11-05 18:49:58 Alessandro Menti tags testcase
2011-11-05 19:46:18 Alessandro Menti tags testcase oneiric testcase
2011-11-07 20:16:14 Brian Murray affects sudo (Ubuntu) accountsservice (Ubuntu)
2011-11-07 23:52:53 Brian Murray affects accountsservice (Ubuntu) gnome-control-center (Ubuntu)
2011-11-09 15:09:00 Pedro Villavicencio gnome-control-center (Ubuntu): assignee Rodrigo Moya (rodrigo-moya)
2012-01-10 08:39:32 Sebastien Bacher gnome-control-center (Ubuntu): assignee Rodrigo Moya (rodrigo-moya)
2012-03-01 14:39:31 Alvaro Leal (Effenberg0x0) tags oneiric testcase oneiric precise testcase
2012-04-14 13:33:05 Alvaro Leal (Effenberg0x0) bug added subscriber U+1 - Ubuntu Development Releases Testing Team
2012-04-14 14:05:49 Alvaro Leal (Effenberg0x0) removed subscriber U+1 - Ubuntu Development Releases Testing Team
2012-06-02 21:48:11 Shahar Or description If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducible even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to Workaround: -If you can not perform administrative actions but can still login without a password, open a terminal and type "passwd". This command should prompt you for a new password and change it without any problems. -If you can not login, you can reset your password by booting into recovery mode and changing it there. Follow the instructions at <http://psychocats.net/ubuntu/resetpassword>. You may also choose to use a password for your account and to enable autologin at the same time. This choice will enable you to benefit the advantage of not entering a password at boot time with the security of Ubuntu requiring your password when attempting to perform privileged actions. If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducible even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to Workaround: -If you can not perform administrative actions but can still login without a password, open a terminal and type "passwd". This command should prompt you for a new password and change it without any problems. -If you can not login, you can reset your password by booting into recovery mode and changing it there. Follow the instructions at <http://psychocats.net/ubuntu/resetpassword>. You may also choose to use a password for your account and to enable autologin at the same time. This choice will enable you to benefit the advantage of not entering a password at boot time with the security of Ubuntu requiring your password when attempting to perform privileged actions. Of course, this helps when you are the only desktop user or the primary one.
2012-06-02 21:50:19 Shahar Or bug added subscriber Shahar Or
2012-06-03 07:18:52 Alessandro Menti description If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducible even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to Workaround: -If you can not perform administrative actions but can still login without a password, open a terminal and type "passwd". This command should prompt you for a new password and change it without any problems. -If you can not login, you can reset your password by booting into recovery mode and changing it there. Follow the instructions at <http://psychocats.net/ubuntu/resetpassword>. You may also choose to use a password for your account and to enable autologin at the same time. This choice will enable you to benefit the advantage of not entering a password at boot time with the security of Ubuntu requiring your password when attempting to perform privileged actions. Of course, this helps when you are the only desktop user or the primary one. If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducible even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to perform administrative actions. Workaround: -If you can not perform administrative actions but can still login without a password, open a terminal and type "passwd". This command should prompt you for a new password and change it without any problems. -If you can not login, you can reset your password by booting into recovery mode and changing it there. Follow the instructions at <http://psychocats.net/ubuntu/resetpassword>. You may also choose to use a password for your account and to enable autologin at the same time. This choice will enable you to benefit the advantage of not entering a password at boot time with the security of Ubuntu requiring your password when attempting to perform privileged actions. Of course, this helps when you are the only desktop user or the primary one.
2012-11-17 15:03:54 ceg bug task added accountsservice (Ubuntu)
2012-11-17 15:04:23 ceg bug task added gnome-system-tools (Ubuntu)
2012-11-17 15:10:46 ceg description If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducible even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to perform administrative actions. Workaround: -If you can not perform administrative actions but can still login without a password, open a terminal and type "passwd". This command should prompt you for a new password and change it without any problems. -If you can not login, you can reset your password by booting into recovery mode and changing it there. Follow the instructions at <http://psychocats.net/ubuntu/resetpassword>. You may also choose to use a password for your account and to enable autologin at the same time. This choice will enable you to benefit the advantage of not entering a password at boot time with the security of Ubuntu requiring your password when attempting to perform privileged actions. Of course, this helps when you are the only desktop user or the primary one. If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducible even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Cause: The password is cleared (which prevents authentification for security reasons). However, the user only needs to be added to the nopasswordlogin group, to enable passwordless login with gdm (and other DMs that ship with a corresponding pam configuration). Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to perform administrative actions. Workaround: -If you can not perform administrative actions but can still login without a password, open a terminal and type "passwd". This command should prompt you for a new password and change it without any problems. -If you can not login, you can reset your password by booting into recovery mode and changing it there. Follow the instructions at <http://psychocats.net/ubuntu/resetpassword>. You may also choose to use a password for your account and to enable autologin at the same time. This choice will enable you to benefit the advantage of not entering a password at boot time with the security of Ubuntu requiring your password when attempting to perform privileged actions. Of course, this helps when you are the only desktop user or the primary one.
2012-11-17 15:19:31 ceg description If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducible even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Cause: The password is cleared (which prevents authentification for security reasons). However, the user only needs to be added to the nopasswordlogin group, to enable passwordless login with gdm (and other DMs that ship with a corresponding pam configuration). Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to perform administrative actions. Workaround: -If you can not perform administrative actions but can still login without a password, open a terminal and type "passwd". This command should prompt you for a new password and change it without any problems. -If you can not login, you can reset your password by booting into recovery mode and changing it there. Follow the instructions at <http://psychocats.net/ubuntu/resetpassword>. You may also choose to use a password for your account and to enable autologin at the same time. This choice will enable you to benefit the advantage of not entering a password at boot time with the security of Ubuntu requiring your password when attempting to perform privileged actions. Of course, this helps when you are the only desktop user or the primary one. If I choose not to have a password for my operating account, every operation fails if it needs root access. Reproducible even on a newly set up machine. See: http://ubuntuforums.org/showthread.php?t=1862543 Release: 11.10 Cause: The password is cleared to be empty, and this prevents authentification for many admin tasks for security reasons. However, the user only needs to be added to the "nopasswdlogin" group, to enable passwordless login with gdm (and any other DM that ships with a corresponding "auth sufficient pam_succeed_if.so user ingroup nopasswdlogin" configuration). Fix: * lightdm to add pam rule * account managing tools not clearing password but only adding user to "nopasswdlogin" group Steps to reproduce: 1. Install Ubuntu 11.10 as normal. During installation, when you are asked to choose a password, enter one, since the installation can not continue if you do not do so. 2. Boot the newly installed system and log in as usual. 3. Choose "System Settings" from the launcher on the left and open "User Accounts". 4. In the User Accounts window, click on Unlock at the top right of the dialog. Enter your user password when prompted. 5. Click on the four dots next to the "Password" label to change your password. 6. Select "Log in without a password" from the dropdown box. Close the window. 7. Try to perform an action requiring administrative privileges. For example, try running "sudo apt-get update" from a terminal. Expected behavior: sudo should require the user's password and accept it, or proceed without requiring any password altogether. Actual behavior: sudo requires the user's password and does not accept it (since it is set to an empty string in /etc/shadow). Further notes: After disabling the password request at login, the /etc/shadow file related to the test user account I created looked like this: test::15283:0:99999:7::: This shows that the password hash is made completely empty; that conflicts with the policies listed in /etc/sudoers, which require a password to be given in order to perform administrative actions. Workaround: -If you can not perform administrative actions but can still login without a password, open a terminal and type "passwd". This command should prompt you for a new password and change it without any problems. -If you can not login, you can reset your password by booting into recovery mode and changing it there. Follow the instructions at <http://psychocats.net/ubuntu/resetpassword>. You may also choose to use a password for your account and to enable autologin at the same time. This choice will enable you to benefit the advantage of not entering a password at boot time with the security of Ubuntu requiring your password when attempting to perform privileged actions. Of course, this helps when you are the only desktop user or the primary one.
2012-11-17 15:22:18 ceg bug task added lightdm (Ubuntu)
2012-11-17 21:20:08 Milan Bouchet-Valat bug added subscriber Milan Bouchet-Valat
2012-11-17 21:21:59 Milan Bouchet-Valat gnome-system-tools (Ubuntu): status New Invalid
2013-04-13 20:40:40 Launchpad Janitor accountsservice (Ubuntu): status New Confirmed
2013-04-13 20:40:40 Launchpad Janitor lightdm (Ubuntu): status New Confirmed
2013-05-15 11:21:11 Siddhanathan Shanmugam tags oneiric precise testcase oneiric precise raring saucy testcase
2013-09-29 22:03:38 Alberto Salvia Novella accountsservice (Ubuntu): importance Undecided High
2013-09-29 22:03:42 Alberto Salvia Novella lightdm (Ubuntu): importance Undecided High
2013-09-29 22:03:44 Alberto Salvia Novella gnome-system-tools (Ubuntu): importance Undecided High
2013-09-29 22:04:23 Alberto Salvia Novella accountsservice (Ubuntu): status Confirmed Triaged
2013-09-29 22:05:11 Alberto Salvia Novella lightdm (Ubuntu): status Confirmed Triaged
2013-09-29 22:05:16 Alberto Salvia Novella bug added subscriber Alberto Salvia Novella
2016-01-15 10:52:05 Alessandro Menti removed subscriber Alessandro Menti
2016-10-22 02:39:22 David bug added subscriber David