128507 – [PATCH] kdm ignores pam_open_session failure

Bug 128507 - [PATCH] kdm ignores pam_open_session failure

Summary: [PATCH] kdm ignores pam_open_session failure

Status:	RESOLVED FIXED

Alias:	None

Product:	kdm
Classification:	Miscellaneous
Component:	general (show other bugs)
Version:	unspecified
Platform:	Compiled Sources Linux

Importance:	NOR normal
Target Milestone:	---
Assignee:	kdm bugs tracker

URL:
Keywords:

Duplicates (1):	80032 (view as bug list)
Depends on:
Blocks:

Reported:	2006-06-02 17:41 UTC by Dirk Mueller
Modified:	2008-05-19 17:30 UTC (History)
CC List:	1 user (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
(untested) patch (875 bytes, patch) 2006-06-02 17:43 UTC, Dirk Mueller	Details
View All Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Dirk Mueller 2006-06-02 17:41:21 UTC

Version:            (using KDE KDE 3.5.3)
Installed from:    Compiled From Sources

this pam config: 

=== Cut ===
#%PAM-1.0
auth     sufficient     pam_ssh.so
auth     include        common-auth
account  include        common-account
password include        common-password
session  required       pam_ssh.so
session  include        common-session
session  required       pam_devperm.so
session  required       pam_resmgr.so
=== Cut ===

and logging in without correct ssh passphrase, it continues to log in. this is due to kdm ignoring error exit code of pam_open_session. though I can't come up with a concrete case, this could become a security issue.

Comment 1 Dirk Mueller 2006-06-02 17:43:30 UTC

Created attachment 16433 [details]
(untested) patch

Comment 2 Oswald Buddenhagen 2006-10-13 19:14:30 UTC

fixed for kde 3.5.6 and 4.0

Comment 3 Oswald Buddenhagen 2006-10-13 20:26:15 UTC

*** Bug 80032 has been marked as a duplicate of this bug. ***