Bug 216817

Summary: Rescue system prompts for a password
Product: [openSUSE] openSUSE 10.2 Reporter: Kirk Coombs <kcoombs>
Component: OtherAssignee: Steffen Winterfeldt <snwint>
Status: RESOLVED FIXED QA Contact: E-mail List <qa-bugs>
Severity: Enhancement    
Priority: P5 - None CC: andreas.hanke, kukuk
Version: Beta 1   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: Beta-Customer Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Kirk Coombs 2006-10-31 22:05:47 UTC 
When booting the rescue system from openSUSE 10.2 Beta1 a password is requested after entering the root user. This password is not needed, and root will be logged in regardles of what is entered.

This password prompt is useless and should be removed (as is has been in previous SUSE releases).
Comment 1 Steffen Winterfeldt 2006-11-06 11:03:58 UTC 
I think this appeared after the pam config changes. Thorsten, is is possible
to get rid of the prompt for an empty password?
Comment 2 Thorsten Kukuk 2006-11-06 11:15:24 UTC 
This has nothing to do with the PAM config changes.
If you wish that people login without password, use pam_permit.so instead of pam_unix2.so.
Comment 3 Steffen Winterfeldt 2006-11-06 11:33:09 UTC 
Just had a talk with Thorsten and requiring the prompt was a change
wanted by the security team. pam_permit OTOH, is probably not so good
if you, say, get the idea to start an sshd in your rescue system. He'll
give it some thoughts...
Comment 4 Thorsten Kukuk 2006-11-06 14:15:52 UTC 
I changed it, so that:
- If the password is empty and somebody enters a password, login will fail
- If the account is known before and the password empty, pam_unix2 will not ask for a password.

But if the account is not known before, the current behavior will stay and we will ask for a password. But this should not be the case on the rescue system.
Comment 5 Thorsten Kukuk 2006-11-06 14:16:07 UTC 
close it