On Thu, Jul 23, 2009 at 06:28:56PM +0200, Nicolas François wrote: > On Thu, Jul 23, 2009 at 12:41:05PM +0200, vor...@debian.org wrote:
> > On Tue, Jul 21, 2009 at 12:52:53PM +0200, Nicolas FRANCOIS (Nekral) wrote: > > > pam_securetty currently first checks if the user is valid and then checks > > > if the tty is secure. > > > pam_securetty should only avoid root's login on insecure tty. > > > pam_securetty can consider invalid users as possibly mis-typed root users, > > > but those invalid users should not be rejected (by pam_securetty) on > > > secure ttys. > > > This was triggered by the discussion on http://bugs.debian.org/531341 > > I agree, the module should not enforce username checks on secure ttys. Any > > chance you could provide a patch for this? If not, I'll put it in my queue. > Here is a patch. Thanks; I've submitted this patch upstream and am waiting for feedback. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developer http://www.debian.org/ slanga...@ubuntu.com vor...@debian.org
signature.asc
Description: Digital signature
