FS#75647 : [pambase] unknown usernames are logged (due to pam_shells.so), exposing accidentally typed passwords

FS#75647 - [pambase] unknown usernames are logged (due to pam_shells.so), exposing accidentally typed passwords

Attached to Project: Arch Linux
Opened by Jonathan Krebs (thejonny) - Thursday, 18 August 2022, 18:21 GMT
Last edited by Toolybird (Toolybird) - Sunday, 11 June 2023, 07:18 GMT

Task Type	Bug Report
Category	Packages: Core
Status	Closed
Assigned To	David Runge (dvzrv) Levente Polyak (anthraxx)
Architecture	All
Severity	Low
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

Description:

even if `LOG_UNKFAIL_ENAB no` is in `/etc/login.def`, `login` logs unknown usernames on a fresh archlinux installation.

This is caused by pam_shells in `/etc/pam.d/system-login`, which returns `PAM_AUTH_ERR` for unknown users, instead of `PAM_USER_UNKOWN`.

Is `pam_shells` any good for programs apart from `chsh`?

(This is especially painful, if the password is the passphrase for an encrypted home on an unencrypted root.)

Additional info:
* package version(s): pambase 20211210-1
* config and/or log files etc.
* link to upstream bug report, if any:
* I reported the issue also in https://github.com/linux-pam/linux-pam/issues/483

Steps to reproduce:

This task depends upon

Closed by Toolybird (Toolybird)
Sunday, 11 June 2023, 07:18 GMT
Reason for closing: Duplicate
Additional comments about closing: ~~FS#57786~~

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#75647 - [pambase] unknown usernames are logged (due to pam_shells.so), exposing accidentally typed passwords

Details

Loading...