Source: pam
Version: testing
Severity: wishlist
Tags: patch
Hello
I found a log message in auth.log stating the securetty file wanst found. This
is trivial to fix. The solutions is to remove nullok_secure in common-auth file.
Also im submiting a small patch. From my end this patch is good.
Thank you
-- System Information:
Debian Release: bullseye/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-5-amd64 (SMP w/1 CPU core)
Kernel taint flags: TAINT_CRAP
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
test patch
Index: pam-1.3.1/debian/pam-configs/unix
===================================================================
--- pam-1.3.1.orig/debian/pam-configs/unix
+++ pam-1.3.1/debian/pam-configs/unix
@@ -3,9 +3,9 @@ Default: yes
Priority: 256
Auth-Type: Primary
Auth:
- [success=end default=ignore] pam_unix.so nullok_secure try_first_pass
+ [success=end default=ignore] pam_unix.so try_first_pass
Auth-Initial:
- [success=end default=ignore] pam_unix.so nullok_secure
+ [success=end default=ignore] pam_unix.so
Account-Type: Primary
Account:
[success=end new_authtok_reqd=done default=ignore] pam_unix.so
