lightdm uses wrong ccache name on pam_krb5 credentials refresh
Bug #1336663 reported by
Sergio Gelato
This bug affects 5 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Light Display Manager |
Triaged
|
Medium
|
Unassigned | ||
gdm |
New
|
Undecided
|
Unassigned | ||
libpam-krb5 (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
lightdm (Ubuntu) |
Triaged
|
Medium
|
Unassigned |
Bug Description
As already noted by Brian Knoll in https:/
lightdm 1.10.1-0ubuntu1 uses an inappropriate credentials cache, /tmp/krb5cc_0, when refreshing Kerberos credentials on screen unlock.
I couldn't find the new bug Robert Ancell called for in https:/
Changed in lightdm: | |
importance: | Undecided → Medium |
Changed in lightdm (Ubuntu): | |
importance: | Undecided → Medium |
Changed in lightdm: | |
status: | New → Triaged |
Changed in lightdm (Ubuntu): | |
status: | New → Triaged |
To post a comment you must log in.
This bug occurs when when using LightDM as a lockscreen and pam-krb5 not correctly updating the credentials of the session you switch back to.
It's not clear if the problem is the way we are using PAM in LightDM (i.e. insufficient/wrong information for pam-krb5 to do the right thing) or an assumption by pam-krb5 that is not occurring.