touch-packages team mailing list archive

[Robert Ancell <robert.ancell@xxxxxxxxxxxxx>]

** Description changed:

- Ubuntu Touch will soon have/now has the ability to set a PIN/password
- for the user. If the password is set, we should provide some protection
- against brute force password guessing since many users will choose to
- use PINs rather than proper passwords. This is required for devices for
- RTM, but not for the traditional Ubuntu desktop.
+ [Impact]
+ No method to configure PAM services used (hard-coded to "lightdm").

** Summary changed:

- please make use of pam_tally2 for Touch login and screenunlock
+ No method to configure PAM services

** Description changed:

  [Impact]
- No method to configure PAM services used (hard-coded to "lightdm").
+ No method to configure PAM services used (hard-coded to "lightdm"). This is required in some cases, e.g. when running Ubuntu on the phone we want to use a different PAM stack. By making this configurable the phone can have a package that overrides the default.
+ 
+ [Test Case]
+ 1. Set a different PAM stack in the LightDM configuration:
+  [SeatDefaults]
+  pam-service=custom-service
+ 2. Start LightDM
+ 3. Log in
+ Expected result:
+ PAM modules in "custom-service" are run, user is logged in.
+ Observed result:
+ PAM modules in "lightdm" are run, user is logged in. (feature not yet supported)
+ 
+ [Regression Potential]
+ Low, fix is just replacing hard-coded values with a configuration lookup. Tested with regression tests.

** Summary changed:

- No method to configure PAM services
+ Not able to configure PAM services

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to lightdm in Ubuntu.
https://bugs.launchpad.net/bugs/1348251

Title:
  Not able to configure PAM services

Status in Light Display Manager:
  Fix Released
Status in Light Display Manager 1.10 series:
  Fix Released
Status in “lightdm” package in Ubuntu:
  Fix Released
Status in “ubuntu-touch-session” package in Ubuntu:
  Invalid
Status in “lightdm” source package in Trusty:
  New
Status in “ubuntu-touch-session” source package in Trusty:
  New
Status in “lightdm” source package in Utopic:
  Fix Released
Status in “ubuntu-touch-session” source package in Utopic:
  Invalid

Bug description:
  [Impact]
  No method to configure PAM services used (hard-coded to "lightdm"). This is required in some cases, e.g. when running Ubuntu on the phone we want to use a different PAM stack. By making this configurable the phone can have a package that overrides the default.

  [Test Case]
  1. Set a different PAM stack in the LightDM configuration:
   [SeatDefaults]
   pam-service=custom-service
  2. Start LightDM
  3. Log in
  Expected result:
  PAM modules in "custom-service" are run, user is logged in.
  Observed result:
  PAM modules in "lightdm" are run, user is logged in. (feature not yet supported)

  [Regression Potential]
  Low, fix is just replacing hard-coded values with a configuration lookup. Tested with regression tests.

To manage notifications about this bug go to:
https://bugs.launchpad.net/lightdm/+bug/1348251/+subscriptions