On server login user can hack
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu |
Invalid
|
High
|
Brian Murray |
Bug Description
I have a password protected account. When you switch users and go to: Options > Remote Login Via XDMCP... and then press cancel, the user can get into the currently logged in account without using a password.
ProblemType: Bug
Architecture: i386
Date: Thu Jul 5 19:58:54 2007
DistroRelease: Ubuntu 7.04
ExecutablePath: /usr/bin/
Package: gnome-panel 1:2.18.1-0ubuntu3
PackageArchitec
ProcCmdline: gnome-panel --sm-client-id default1
ProcCwd: /home/ubuntu
ProcEnviron:
PATH=/
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: gnome-panel
Uname: Linux ubuntu 2.6.20-15-generic #2 SMP Sun Apr 15 07:36:31 UTC 2007 i686 GNU/Linux
Thanks for taking the time to report this bug and helping to make Ubuntu better. Are you experiencing this with gdm or kdm? Which particular version of that package did you notice this with? You can check via 'dpkg -l gdm'. Thanks in advance.