Bug #3089

« Previous | Next »

Server Manager: admin login still possible

Added by Davide Principi over 6 years ago. Updated over 6 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:nethserver-lib
Target version:v6.6-final
Security class: Resolution:
Affected version:v6.6-rc1 NEEDINFO:No

Description

In nethserver-lib-2.1.4-1.ns6.noarch, /sbin/e-smith/pam-authenticate-pw:

    32    if($userName eq 'admin' && ! defined getpwnam('admin')) {
    33        # fallback to root login if "admin" account is not available:
    34        $userName = 'root';
    35    }

This code is responsible for root/admin aliasing, when admin user does not exist. It should have been removed in #3026.

login.png (22 KB) Alessio Fattorini, 03/23/2015 05:57 AM

Related issues

Related to NethServer 6 - Feature #3026: Differentiate root and admin users CLOSED

History

#1 Updated by Davide Principi over 6 years ago

  • Related to Feature #3026: Differentiate root and admin users added

#2 Updated by Davide Principi over 6 years ago

  • Status changed from TRIAGED to ON_DEV
  • Assignee set to Davide Principi
  • % Done changed from 20 to 30

The commit wasn't merged before 2.1.4 release. Rebased.

#3 Updated by Davide Principi over 6 years ago

  • Status changed from ON_DEV to MODIFIED
  • % Done changed from 30 to 60

MODIFIED

The admin login must not be possible, if nethserver-directory is not installed.

#4 Updated by Davide Principi over 6 years ago

  • Status changed from MODIFIED to ON_QA
  • Assignee deleted (Davide Principi)
  • % Done changed from 60 to 70

In nethserver-testing 6.6
nethserver-lib-2.1.4-1.1.gff44415.ns6.noarch.rpm

#5 Updated by Alessio Fattorini over 6 years ago

  • Assignee set to Alessio Fattorini

#6 Updated by Alessio Fattorini over 6 years ago

  • File login.png added
  • Status changed from ON_QA to VERIFIED
  • Assignee deleted (Alessio Fattorini)
  • % Done changed from 70 to 90
  • No nethserver-directory installed

Before upgrade can login with admin

After upgrade obtain error attached

Verified

#7 Updated by Davide Principi over 6 years ago

  • Status changed from VERIFIED to CLOSED
  • % Done changed from 90 to 100

In nethserver-base 6.6
nethserver-lib-2.1.5-1.ns6.noarch.rpm

Also available in: Atom PDF