This is now released with usg 20.04.17
** Changed in: usg
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to pam in Ubuntu.
https://bugs.launchpad.net/bugs/1989731
Title:
Non-root
Thanks for the heads up Alejandro!
A fix was committed and merged for the CIS/USG tooling.
We are preparing a new version but we are still working on some other
fixes to include. I'll update the thread when it comes out.
** Changed in: pam (Ubuntu)
Status: New => Fix Committed
**
The CIS recommendations containing the fix for this issue have been
already released [1][2].
The next step would be to fix the CIS/USG tooling so that it follows the
new guidelines.
[1] https://workbench.cisecurity.org/benchmarks/11909
[2]
It seems like if the line:
'password required pam_pwhistory.so remember=5'
is added before the pam_unix line in /etc/pam.d/common-password
everything works as expected because the new password now won't match the "old"
password that was already in the shadow file (which is what happens if
** Changed in: usg
Assignee: (unassigned) => David Fernandez Gonzalez (litios)
** Changed in: usg
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to pam in Ubuntu.
** Project changed: ubuntu-security-certifications => usg
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to pam in Ubuntu.
https://bugs.launchpad.net/bugs/1989731
Title:
Non-root user unable to change own password if
** Also affects: ubuntu-security-certifications
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to pam in Ubuntu.
https://bugs.launchpad.net/bugs/1989731
Title:
Non-root user unable
7 matches
Mail list logo