[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#561448: libpam-alreadyloggedin: Fake sense of security?

Package: libpam-alreadyloggedin
Version: 0.3-1
Severity: important


I am seriously concerned by the fake sense of security that such tool
provides (I must say that some other pam modules are scarry).

For instance, using vlock and libpam-alreadyloggedin on the same machine
provides the same level of security as a blank password, if not less.

As of 2009, where most people use either XWindow/ssh/screen, I see little
benefit using this tool (YMMV).

Please, add appropriate warning to this package description and README.

Thank you for your effort.


BTW, It is recommended to submit an ITP bug before uploading a new
package in the archive, so other DDs can provide feed-back.

Reply to: