Bug#163499: marked as done (kdepasswd: hangs if PAM rejects the new password because it's too weak)
Your message dated Sat, 21 Aug 2004 02:15:45 +0200
with message-id <20040821001544.GA2143@chistera.yi.org>
and subject line kdepasswd: hangs if PAM rejects the new password because it's too weak
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 6 Oct 2002 09:15:44 +0000
>From tore@linpro.no Sun Oct 06 04:15:43 2002
Return-path: <tore@linpro.no>
Received: from ls.linpro.no (linpro.no) [80.232.36.26] (qmailr)
by master.debian.org with smtp (Exim 3.12 1 (Debian))
id 17y7Vn-00062Y-00; Sun, 06 Oct 2002 04:15:43 -0500
Received: (qmail 28171 invoked from network); 6 Oct 2002 09:15:41 -0000
Received: from tic.linpro.no (80.232.36.160)
by ls.linpro.no with SMTP; 6 Oct 2002 09:15:41 -0000
Received: from tore by tic.linpro.no with local (Exim 3.35 #1 (Debian))
id 17y7Vk-0001N2-00; Sun, 06 Oct 2002 11:15:40 +0200
From: Tore Anderson <tore@linpro.no>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: kdepasswd: hangs if PAM rejects the new password because it's too weak
X-Mailer: reportbug 1.50
Date: Sun, 06 Oct 2002 11:15:40 +0200
Message-Id: <E17y7Vk-0001N2-00@tic.linpro.no>
Delivered-To: submit@bugs.debian.org
Package: kdepasswd
Version: 4:2.2.2-9
Severity: important
If the PAM module has the "min" option set (4 is default in Debian), and you
try to set a password which is shorter than that, kdepasswd hangs. It also
hangs if you try to set a weak password such as 'aaaa'.
This is confusing to newbies, as such weak passwords are accepted
during the installation process - kdepasswd shoud really print out the
error message from passwd instead of hanging.
Relevant strace output:
read(7, "\nBad: new password is too short\n"..., 255) = 57
select(8, [7], NULL, NULL, {1, 0}) = 0 (Timeout)
wait4(681, 0xbffff07c, WNOHANG, NULL) = 0
(last two lines repeated ad infinitum)
By the way, your kdepasswd 3.0.3-1 packages also suffer from this problem.
-- System Information
Debian Release: 3.0
Architecture: i386
Kernel: Linux tic.linpro.no 2.4.17-xfs #11 SMP Fri Jan 25 13:55:45 CET 2002 i686
Locale: LANG=C, LC_CTYPE=no_NO
Versions of packages kdepasswd depends on:
ii kdelibs3 4:2.2.2-13.woody.1 KDE core libraries (runtime files)
ii libc6 2.2.5-14.3 GNU C Library: Shared libraries an
ii libjpeg62 6b-100 The Independent JPEG Group's JPEG
ii libpng2 1.0.12-3 PNG library - runtime
ii libqt2 3:2.3.1-22 Qt GUI Library (runtime version).
ii libstdc++2.10-glibc2. 1:2.95.4-7 The GNU stdc++ library
ii xlibs 4.1.0-16 X Window System client libraries
ii zlib1g 1:1.1.4-1 compression library - runtime
---------------------------------------
Received: (at 163499-done) by bugs.debian.org; 21 Aug 2004 00:15:46 +0000
>From asp16@alu.ua.es Fri Aug 20 17:15:46 2004
Return-path: <asp16@alu.ua.es>
Received: from 84-120-69-105.onocable.ono.com (chistera.yi.org) [84.120.69.105]
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1ByJXu-0006gt-00; Fri, 20 Aug 2004 17:15:46 -0700
Received: from userid 1000 by chistera.yi.org with local (Exim 4.34)
id 1ByJXt-0000Z5-0z
for 163499-done@bugs.debian.org; Sat, 21 Aug 2004 02:15:45 +0200
Date: Sat, 21 Aug 2004 02:15:45 +0200
From: Adeodato =?iso-8859-1?Q?Sim=F3?= <asp16@alu.ua.es>
To: 163499-done@bugs.debian.org
Subject: Re: kdepasswd: hangs if PAM rejects the new password because it's too weak
Message-ID: <20040821001544.GA2143@chistera.yi.org>
References: <E17y7Vk-0001N2-00@tic.linpro.no>
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <E17y7Vk-0001N2-00@tic.linpro.no>
X-No-CC: Please respect my Mail-Followup-To header
User-Agent: Mutt/1.5.6+20040818i
Delivered-To: 163499-done@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2004_03_25
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-1.8 required=4.0 tests=BAYES_00,FROM_ENDS_IN_NUMS
autolearn=no version=2.60-bugs.debian.org_2004_03_25
X-Spam-Level:
* Tore Anderson [Sun, 06 Oct 2002 11:15:40 +0200]:
> If the PAM module has the "min" option set (4 is default in Debian), and you
> try to set a password which is shorter than that, kdepasswd hangs. It also
> hangs if you try to set a weak password such as 'aaaa'.
> By the way, your kdepasswd 3.0.3-1 packages also suffer from this problem.
this is now fixed, since at least 2003-06-22. see http://bugs.kde.org/56860.
thanks,
--
Adeodato Simó
EM: asp16 [ykwim] alu.ua.es | PK: DA6AE621
One of my most productive days was throwing away 1000 lines of code.
-- Ken Thompson
Reply to: