← Back to team overview

dx-packages team mailing list archive

[Bug 1316320] Re: Screen Lock does not prompt for password

 

LDM uses `ssh user@server` to authenticate users.
It then copies the user /etc/passwd information from the server to the client,
but it doesn't copy the /etc/shadow part, i.e. the user password hash.

So fat client and localapps users do not have a password set, and thus
cannot use `sudo`, cannot unlock a screensaver etc.

The fix would be to let LDM/ssh.c write the hash of the password it gets from the user, locally to /etc/passwd.
Patches welcome for that.

In the future, for LTSP 6, the plan is to drop LDM completely and use
pam to authenticate users, so there won't be issues like that there. But
without contributors, LTSP 6 might take a long while to arrive... :)

-- 
You received this bug notification because you are a member of DX
Packages, which is subscribed to unity in Ubuntu.
Matching subscriptions: dx-packages
https://bugs.launchpad.net/bugs/1316320

Title:
  Screen Lock does not prompt for password

Status in Linux Terminal Server Project:
  New
Status in Unity:
  Invalid
Status in “unity” package in Ubuntu:
  Invalid

Bug description:
  I am using LTSP fat clients, created with:

  $ sudo ltsp-build-image --arch amd64 --fat-client-desktop ubuntu-
  desktop

  LTSP server has sssd authentication utilizing pam and ldap.  Users can
  log in without issue and the home folder is available.  Everything
  works as expected except for screen locking.

  When locking the screen, the displays first go blank and the monitor
  goes to sleep.

  Then if i move the mouse or press a keystroke, They go black but the
  mouse is visible.

  Once I move the mouse or strike a key the second time, everything
  comes back up without password prompt.  However, password prompt is
  enabled in "Brightness & Lock"

  The client hardware is an Intel NUC D34010WYK

  Also maybe related, there seems to be no system tray.  No clock or
  username/logout buttons.  I am using Ctrl + Alt + L to lock the
  screen. (See attached screenshot)

  This is a security vulnerability and I can not make the new 14.04
  image available as fat clients, since they users cannot lock their
  workstation.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ltsp/+bug/1316320/+subscriptions


References