[arch-general] pam settings INSECURE

[RedShift]

Caleb Cushing wrote:
> so here's the problem I've discovered
> http://xenoterracide.blogspot.com/2009/11/bypassing-disabled-accounts-with-kdm.html
> < links to arch bug included posting here because I believe both kde's
> and arch's developers responses are less than satisfactory. This is a
> security bug an easy to fix without making users lives more difficult.
> 


Who said that setting the user's shell to /bin/false means disabling a user?