Bug#737396: kscreensaver: locked screen allows any password if a third session (vt9) is also active
On Tue, May 27, 2014 at 06:50:01PM +0200, Lajos Mester wrote:
> > * What authentication type is PAM using (e.g. shadow, ldap, krb5) ?
> How do I know it?
Unless you have changed it, the default should be shadow. Documentation
for PAM is available at http://www.linux-pam.org/
> > * What is the result of the following command on the different VTs
> > with an invalid password:
> > /usr/lib/kde4/libexec/kcheckpass; echo $?
> Trying to log in on the standard terminals. Even there, the user who is logged
> in on the first K-VT, get's logged in without a pass.
>
> For this user the command above gives 0, for the others "authentication
> failure 1".
This looks like the authentication is actually passing. Could you try
installing pamtester (which is availale for jessie/sid) and run the
following command and provide the results:
pamtester -v login <username> authenticate
--
Jim Scadden
Reply to: