#5058 HIGH Future : root password is empty and identical on all XO's
Zarro Boogs per Child
bugtracker at laptop.org
Sun Jan 6 19:20:22 EST 2008
#5058: root password is empty and identical on all XO's
-----------------------+----------------------------------------------------
Reporter: gnu | Owner: mstone
Type: defect | Status: new
Priority: high | Milestone: Future Release
Component: security | Version: Build 623
Resolution: | Keywords:
Verified: 0 | Blocking:
Blockedby: |
-----------------------+----------------------------------------------------
Comment(by AlbertCahalan):
As pointed out in bug #5537, there is a simple fix for "su".
Place the text below into /etc/pam.d/su and place user
olpc into the wheel group. (the "pam_succeed_if" line is key)
Enable the root account without a password.
Bugs #5879, #5795, #5792, and #5707 just go away. Yay!
{{{
#%PAM-1.0
auth sufficient pam_rootok.so
auth required pam_succeed_if.so use_uid user ingroup
wheel
#auth required pam_listfile.so onerr=fail item=user
sense=allow file=/etc/security/su.allow
#auth required pam_listfile.so onerr=fail item=user
sense=deny file=/etc/security/su.deny
# Uncomment the following line to implicitly trust users in the "wheel"
group.
#auth sufficient pam_wheel.so trust use_uid
# Uncomment the following line to require a user to be in the "wheel"
group.
#auth required pam_wheel.so use_uid
auth include system-auth
account sufficient pam_succeed_if.so uid = 0 use_uid quiet
account include system-auth
password include system-auth
session include system-auth
session optional pam_xauth.so
}}}
--
Ticket URL: <http://dev.laptop.org/ticket/5058#comment:4>
One Laptop Per Child <http://dev.laptop.org>
OLPC bug tracking system
More information about the Bugs
mailing list