Bug#498042: kscreensaver: Kscreensaver (lock screen) doesn't let user with empty password out
Package: kscreensaver
Severity: important
Let's suppose you have a user with empty password in your system, which
is permitted to login on :0
If you lock the screen with kscreensaver, it will prompt for password,
but it would not be satisfied with empty password and so will never let
that user leave xscreensaver other than via ctrl-alt-backspace.
It was broken the same way in etch, then it worked for some time in
lenny/testing, now I've updated to lenny/stable and it no longer works,
again.
I can't figure out which PAM passes one should do to make it work,
because PAM is unsolvable puzzle: it isn't going to work silently
regardless of what you do.
/var/log/auth.log contain those lines on uncessful attempt of leaving
kscreensaver:
Sep 6 19:04:18 ant unix_chkpwd[1989]: check pass; user unknown
Sep 6 19:04:19 ant unix_chkpwd[1990]: check pass; user unknown
Sep 6 19:04:19 ant kcheckpass[1988]: pam_unix(kscreensaver:auth):
authentication failure; logname=lena uid=1002 euid=1002 tty=:0 ruser=
rhost= user=lena
Sep 6 19:04:19 ant kcheckpass[1988]: Authentication failure for lena
(invoked by uid 1002)
And yes, I'm sure that I DO need the user with empty password.
-- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.18-6-k7 (SMP w/2 CPU cores)
Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Reply to: