Bug 196187

Summary: Passwordless login does not work because I cannot set the users that are allowed
Product: [openSUSE] SUSE Linux 10.1 Reporter: Forgotten User --EoyBps8f <forgotten_--EoyBps8f>
Component: YaST2Assignee: Stephan Kulow <coolo>
Status: RESOLVED FIXED QA Contact: Stanislav Visnovsky <visnov>
Severity: Normal    
Priority: P5 - None CC: dpbasti, suse-beta
Version: Final   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: Other Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Forgotten User --EoyBps8f 2006-08-01 06:03:49 UTC 
The only functionality in yast I found for passwordless login is in the user-module > expert. I can enable passwordless login.

After enabling it, it does not work. I am absolutley not familiar with the kdmrc-file, yet I think I found the reason.

To make it work:

1. The setting has to be changed in both [X-:*-Core] and [X-:0-Core]
2. Either NoPassAllUsers=true has to be set (not that nice IMHO), or there has to be a functionality within YasT to add usernames to the lines NoPassUsers= in both sections mentioned in 1.

I have not found any checkbox in the user-settings that sounds like "allow passwordless login for this user".

Either way, having the setting "Allow passwordless login" in YasT and not obvious checkbox in the user-settings, suggests that all one has to do is to enable passwordless logins and it works, which is does not.
Comment 1 Michael Gross 2006-08-01 11:30:10 UTC 
Hello Sven,

I was not able to reproduce that problem by (unsetting) the password with `passwd' for a local user. Without any change to KDM it allowed me to log in without a password. Maby this is a problem specific to YaST.

Please attach /var/log/YaST2 as tarball here. Also try if changing the password manually (with `passwd') works for you.
Comment 2 Forgotten User --EoyBps8f 2006-08-02 18:32:45 UTC 
Passwordless login does not mean that you do not have a password. It means that you can login without entering your password, i.e. by double-clicking your account in kdm.

Setting the password to empty is a workaround.
Comment 3 Michael Gross 2006-08-03 13:05:08 UTC 
This might work if you do the following:
Say this is your fstab line:

micha:x:32001:100::/home/micha:/bin/bash

Then simply remove the :x: like:

micha::32001:100::/home/micha:/bin/bash

This should lead the login process to not check/ask for a password because it knows there is none. Does it work that way?
Comment 4 Forgotten User --EoyBps8f 2006-08-03 13:50:12 UTC 
fstab is for mounting-points is it not? This issue is just about logging into KDE via kdm. It is not about logging in on any console.

For kdm to let the user login, /etc/opt/kde3/share/config/kdm/kdmrc has to be altered and it is but not enough.

If I check the "allow passwordless login" in YaST /etc/opt/kde3/share/config/kdm/kdmrc.SuSEconfig is altered, so this setting is meant to affect kdm.

In the [X-:0-Core] section NoPassEnable is set to true/false depending on the YaST-setting. Yet that is not enough because there is an empty string for NoPassUsers. Hence, for display 0 no user is allowed to login without entering the password. For display 1,2... it works because the [X-:*-Core] section does not contain any empty strings.

To make kdm work the intended way, YaST has to offer a checkbox in the user's settings that adds his/her username to the NoPassUsers-stings in kdmrc.SuSEconfig. And YaST must not set any empty strings for [X-:0-Core], since those override the settings for [X-:*-Core].

It seems unlikely that a user enables passwordless login for kdm, but wants that no user is allowed to do so.

Maybe some kde-maintainer can help resolve this issue better than I can.
Comment 5 Michael Gross 2006-08-03 16:43:29 UTC 
I ment the /etc/passwd of course.
Please try that first. If it does not work, I'll reassign.
Comment 6 Michael Gross 2006-08-04 11:07:35 UTC 
OK this does not appear to work.
I'm reassigning this to the KDE maintainers for a comment.
Comment 7 Stephan Kulow 2006-08-17 09:16:28 UTC 
sounds likely. Not sure when I tested this the last time
Comment 8 Sebastian Turzański 2006-08-25 10:41:57 UTC 
i have the same problem - I tried to use this from suse 9.3 http://en.opensuse.org/SDB:Change_Behavior_of_KDE_Login_Manager_(KDM)

but it doesnt seam to work . I tried to edit /etc/opt/kde3/share/config/kdm/kdmrc
and it's all ok but doubleclieck login just doesnt work. 

Michael Gross it's not about deleting the password in linux, it's about allowing to login to kde without beeing asked for password.
Imagine i have a desktop with proftpd and sshd . I can't just erase my passwords because anybody would just login to my computer. I just want to have a possiblity to login to my kde withuot typing my passowd. 

It worked in my previouse distros so it has to be kde>3.5 related or suse related but having read http://en.opensuse.org/SDB:Change_Behavior_of_KDE_Login_Manager_(KDM) i think it's suse-related
Comment 9 Sebastian Turzański 2006-08-25 15:47:55 UTC 
ok i found the problem
tak a look at /etc/opt/kde3/share/config/kdm/kdmrc

the section that is changed when You change the options in kcontrol (the ones for passwordless login) is this
[X-:*-Core]

and here the options are correct
NoPassEnable=true
NoPassUsers=me,you

but bellow theres another sections that 'covers' it again

[X-:0-Core]

and its NoPassEnable and NoPassUsers are not changed when You change the options in kcontrol

so just put Your options  in [X-:0-Core] and everything will work ok
Comment 10 Sebastian Turzański 2006-08-25 16:01:52 UTC 
please vote http://bugs.kde.org/show_bug.cgi?id=131634
Comment 11 Forgotten User --EoyBps8f 2006-08-25 18:54:30 UTC 
This is an SuSE issue, so voting at KDE will not really help. The solution is already part of comment #1, yet YaST has to make these settings and allow to chose the users to be added.
Comment 12 Stephan Kulow 2006-09-07 13:48:50 UTC 
this should be fixed with latest updates (to factory and BS)