Screensaver asks password when the user is in the password-less login group

Bug #574187 reported by Haggai Eran on 2010-05-03
30
This bug affects 4 people
Affects Status Importance Assigned to Milestone
gnome-screensaver (Ubuntu)
Medium
Unassigned

Bug Description

Binary package hint: gnome-screensaver

I've upgraded to Ubuntu Lucid from Karmic, and now the screensaver asks me for my password even though I'm in the password-less login group. (In the gdm login screen I log in without a password).

This can cause a false sense of security for users using the 'Lock screen' item on the power menu, since you can always asks gnome-screensaver to switch user, and log in back to your user without a password there.

I guess that to fix this we either need to disable the screen locking for such users, or make the switch users dialog be aware that the screen was locked.

ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: gnome-screensaver 2.30.0-0ubuntu1
ProcVersionSignature: Ubuntu 2.6.32-21.32-generic 2.6.32.11+drm33.2
Uname: Linux 2.6.32-21-generic x86_64
NonfreeKernelModules: nvidia
Architecture: amd64
Date: Mon May 3 08:00:54 2010
EcryptfsInUse: Yes
GnomeSessionIdleInhibited: No
GnomeSessionInhibitors: None
ProcEnviron:
 PATH=(custom, user)
 LANG=he_IL.utf8
 SHELL=/bin/bash
SourcePackage: gnome-screensaver
WindowManager: compiz

Haggai Eran (haggai-eran) wrote :
Pedro Villavicencio (pedro) wrote :

Thank you for taking the time to report this bug and helping to make Ubuntu better.You reported this bug a while ago and there hasn't been any activity in it recently. We were wondering is this still an issue for you? Do you get the same with latest Lucid packages or in Maverick? Thanks in advance.

Changed in gnome-screensaver (Ubuntu):
status: New → Incomplete
Haggai Eran (haggai-eran) wrote :

Hi,

The bug still exists in latest lucid packages (gnome-screensaver 2.30.0-ubuntu2). I'm using a workaround locally by adding this line to /etc/pam.d/gnome-screensaver:
> auth sufficient pam_succeed_if.so user ingroup nopasswdlogin

Launchpad Janitor (janitor) wrote :

[Expired for gnome-screensaver (Ubuntu) because there has been no activity for 60 days.]

Changed in gnome-screensaver (Ubuntu):
status: Incomplete → Expired
Haggai Eran (haggai-eran) wrote :

The bug still exists in Maverick.

Changed in gnome-screensaver (Ubuntu):
status: Expired → Incomplete
jhansonxi (jhansonxi) wrote :

I'm encountering this also on Ubuntu 10.04 (Lucid Lynx) x86_64.

Related thread (see comment #7):
http://ubuntuforums.org/showthread.php?t=819198

jhansonxi (jhansonxi) wrote :

Note - the nopasswdlogin correction needs to be the first line in the file, above "@include common-auth".

jhansonxi (jhansonxi) on 2011-01-25
Changed in gnome-screensaver (Ubuntu):
status: Incomplete → Confirmed
tags: added: maverick
Milan Bouchet-Valat (nalimilan) wrote :

Confirming the suggested solution. As I said on bug 630430, this will simply require adding a:
auth sufficient pam_succeed_if.so user ingroup nopasswdlogin
line in /etc/pam.d/gnome-screensaver, right before:
@include common-auth

Changed in gnome-screensaver (Ubuntu):
importance: Undecided → Medium
status: Confirmed → Triaged
twipley (smt-infp) wrote :

Would that mean that upon LiveCD installation, one choosing "automatic login" to not be nagged by password-input prompts at every reboot instance also would implicitly be telling the installer "do not ask me for password every time I am leaving my desktop for more than a few minutes and the screensaver springs up?"

Because to my mind, both go hand-in-hand. Either an user wants to be protected at his home and wants to be asked about passwords here and there, or he wants not to be nagged by such incessant normal-computer-usage password prompts.

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Duplicates of this bug

Other bug subscribers