authentication fails when used in conjunction with sudo, vlock, etc.

Bug #1189062 reported by Tony Gies on 2013-06-09
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
yubico-pam (Ubuntu)
Undecided
Unassigned

Bug Description

When placed in the common-auth PAM stack and used in conjunction with certain programs such as sudo and vlock, the libpam-yubico module fails with an error and authentication does not continue. This can create a denial of service situation

The text of the error is:
[drop_privs.c:restore_privileges(128)] pam_modutil_drop_priv: -1

This is reported and fixed upstream, with a patch here: https://code.google.com/p/yubico-pam/issues/detail?id=49

ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: libpam-yubico 2.11-1
ProcVersionSignature: Ubuntu 3.2.0-24.37-virtual 3.2.14
Uname: Linux 3.2.0-24-virtual i686
ApportVersion: 2.0.1-0ubuntu17.3
Architecture: i386
Date: Sun Jun 9 01:10:59 2013
MarkForUpload: True
ProcEnviron:
 LANGUAGE=en_US:en
 TERM=screen-256color
 PATH=(custom, no user)
 LANG=en_US.UTF-8
 SHELL=/bin/bash
SourcePackage: yubico-pam
UpgradeStatus: No upgrade log present (probably fresh install)

Tony Gies (tgies) wrote :

I believe this has been resolved in the current release, see the link to the bug tracker. Can you try again and tell us if it works for you now?

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers