[Touch-packages] [Bug 237721] Re: Secure attention key
** Changed in: gdm Status: New => Expired -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unity-system-compositor in Ubuntu. https://bugs.launchpad.net/bugs/237721 Title: Secure attention key Status in gdm: Expired Status in KDE Base: Unknown Status in Light Display Manager: Won't Fix Status in Unity System Compositor: New Status in gdm package in Ubuntu: Confirmed Status in kdebase-workspace package in Ubuntu: Won't Fix Status in lightdm package in Ubuntu: Won't Fix Status in ubuntu-meta package in Ubuntu: Invalid Status in unity-system-compositor package in Ubuntu: New Status in xdm package in Ubuntu: Won't Fix Bug description: Binary package hint: gdm In many environments computers are left unattended (e.g. schools, libraries, etc) and people can launch applications which mimic the look-and-feel of the login application (GDM) in order to get the users username and password. This is called login spoofing. * http://en.wikipedia.org/wiki/Login_spoofing Login spoofing can be prevented by using a secure attention key which is a key combination pressed before the user login to launch the password request dialog. This key can only be seen by the kernel, and not sniffed by any application. * http://en.wikipedia.org/wiki/Secure_attention_key To manage notifications about this bug go to: https://bugs.launchpad.net/gdm/+bug/237721/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 237721] Re: Secure attention key
** Changed in: kde-baseapps Status: Confirmed => Unknown -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unity-system-compositor in Ubuntu. https://bugs.launchpad.net/bugs/237721 Title: Secure attention key Status in gdm: New Status in KDE Base: Unknown Status in Light Display Manager: Won't Fix Status in Unity System Compositor: New Status in gdm package in Ubuntu: Confirmed Status in kdebase-workspace package in Ubuntu: Won't Fix Status in lightdm package in Ubuntu: Won't Fix Status in ubuntu-meta package in Ubuntu: Invalid Status in unity-system-compositor package in Ubuntu: New Status in xdm package in Ubuntu: Won't Fix Bug description: Binary package hint: gdm In many environments computers are left unattended (e.g. schools, libraries, etc) and people can launch applications which mimic the look-and-feel of the login application (GDM) in order to get the users username and password. This is called login spoofing. * http://en.wikipedia.org/wiki/Login_spoofing Login spoofing can be prevented by using a secure attention key which is a key combination pressed before the user login to launch the password request dialog. This key can only be seen by the kernel, and not sniffed by any application. * http://en.wikipedia.org/wiki/Secure_attention_key To manage notifications about this bug go to: https://bugs.launchpad.net/gdm/+bug/237721/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 237721] Re: Secure attention key
** Also affects: unity-system-compositor (Ubuntu) Importance: Undecided Status: New ** Also affects: unity-system-compositor Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unity-system-compositor in Ubuntu. https://bugs.launchpad.net/bugs/237721 Title: Secure attention key Status in gdm: New Status in KDE Base: Confirmed Status in Light Display Manager: Won't Fix Status in Unity System Compositor: New Status in gdm package in Ubuntu: Confirmed Status in kdebase-workspace package in Ubuntu: Won't Fix Status in lightdm package in Ubuntu: Won't Fix Status in ubuntu-meta package in Ubuntu: Invalid Status in unity-system-compositor package in Ubuntu: New Status in xdm package in Ubuntu: Won't Fix Bug description: Binary package hint: gdm In many environments computers are left unattended (e.g. schools, libraries, etc) and people can launch applications which mimic the look-and-feel of the login application (GDM) in order to get the users username and password. This is called login spoofing. * http://en.wikipedia.org/wiki/Login_spoofing Login spoofing can be prevented by using a secure attention key which is a key combination pressed before the user login to launch the password request dialog. This key can only be seen by the kernel, and not sniffed by any application. * http://en.wikipedia.org/wiki/Secure_attention_key To manage notifications about this bug go to: https://bugs.launchpad.net/gdm/+bug/237721/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 237721] Re: Secure attention key
This would likely be fixed in unity-system-compositor, not LightDM. ** Changed in: lightdm (Ubuntu) Status: Triaged => Won't Fix ** Changed in: lightdm Status: Triaged => Won't Fix -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/237721 Title: Secure attention key Status in gdm: New Status in KDE Base: Confirmed Status in Light Display Manager: Won't Fix Status in gdm package in Ubuntu: Confirmed Status in kdebase-workspace package in Ubuntu: Won't Fix Status in lightdm package in Ubuntu: Won't Fix Status in ubuntu-meta package in Ubuntu: Invalid Status in xdm package in Ubuntu: Won't Fix Bug description: Binary package hint: gdm In many environments computers are left unattended (e.g. schools, libraries, etc) and people can launch applications which mimic the look-and-feel of the login application (GDM) in order to get the users username and password. This is called login spoofing. * http://en.wikipedia.org/wiki/Login_spoofing Login spoofing can be prevented by using a secure attention key which is a key combination pressed before the user login to launch the password request dialog. This key can only be seen by the kernel, and not sniffed by any application. * http://en.wikipedia.org/wiki/Secure_attention_key To manage notifications about this bug go to: https://bugs.launchpad.net/gdm/+bug/237721/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
