[arch-general] pam settings INSECURE

RedShift redshift at pandora.be
Wed Nov 18 10:55:39 EST 2009

Caleb Cushing wrote:
> so here's the problem I've discovered
> http://xenoterracide.blogspot.com/2009/11/bypassing-disabled-accounts-with-kdm.html
> < links to arch bug included posting here because I believe both kde's
> and arch's developers responses are less than satisfactory. This is a
> security bug an easy to fix without making users lives more difficult.

Who said that setting the user's shell to /bin/false means disabling a user?

More information about the arch-general mailing list