343889 – KDE password authentication dialog for YaST2 accepts ANY password

Bug 343889 - KDE password authentication dialog for YaST2 accepts ANY password

Summary: KDE password authentication dialog for YaST2 accepts ANY password

Status:	RESOLVED DUPLICATE of bug 216796

Alias:	None

Product:	openSUSE 10.3
Classification:	openSUSE
Component:	KDE (show other bugs)
Version:	Final
Hardware:	i686 openSUSE 10.3

Priority:	P5 - None Severity: Critical (vote)
Target Milestone:	---
Assignee:	E-mail List
QA Contact:	E-mail List

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2007-11-24 20:37 UTC by Mike Wells
Modified:	2007-11-26 09:12 UTC (History)
CC List:	0 users

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Mike Wells 2007-11-24 20:37:13 UTC

The KDE authentication dialog (Run as root - KDE su) accepts ANYTHING in the password edit for a root password when invoking YaST2 (/sbin/yast2).

Comment 1 Mike Wells 2007-11-24 20:51:37 UTC

Further experimentation leads me to believe the original (valid) passwd is being cached in memory and remaining there for some period of time (not sure how long). I have seen this occur with "sudo" but never "su".

Comment 2 Stephan Binner 2007-11-26 09:12:37 UTC


*** This bug has been marked as a duplicate of bug 216796 ***