authentication fails when used in conjunction with sudo, vlock, etc.

Bug #1189062 reported by Tony Gies
This bug affects 1 person
Affects Status Importance Assigned to Milestone
yubico-pam (Ubuntu)

Bug Description

When placed in the common-auth PAM stack and used in conjunction with certain programs such as sudo and vlock, the libpam-yubico module fails with an error and authentication does not continue. This can create a denial of service situation

The text of the error is:
[drop_privs.c:restore_privileges(128)] pam_modutil_drop_priv: -1

This is reported and fixed upstream, with a patch here:

ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: libpam-yubico 2.11-1
ProcVersionSignature: Ubuntu 3.2.0-24.37-virtual 3.2.14
Uname: Linux 3.2.0-24-virtual i686
ApportVersion: 2.0.1-0ubuntu17.3
Architecture: i386
Date: Sun Jun 9 01:10:59 2013
MarkForUpload: True
 PATH=(custom, no user)
SourcePackage: yubico-pam
UpgradeStatus: No upgrade log present (probably fresh install)

Revision history for this message
Tony Gies (tgies) wrote :
Revision history for this message
Simon Josefsson (simon-josefsson) wrote :

I believe this has been resolved in the current release, see the link to the bug tracker. Can you try again and tell us if it works for you now?

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers