Re: Future plans?



On Sat, 2007-04-28 at 20:49 +0200, Andrea Dell'Amico wrote:
> On Fri, 2007-04-27 at 17:35 -0400, Sam Varshavchik wrote:
> > Andrea Dell'Amico writes:
> > 
> > > NB: your keyring password and your login password must be the same (and
> > > encfs and ssh-agent too, if you use them)
> > > 
> > > auth        required      pam_env.so
> > > auth        optional      pam_encfs.so
> > > auth        optional      pam_ssh.so try_first_pass
> > > auth        optional      pam_keyring.so try_first_pass
> > > auth        sufficient    pam_unix.so nullok try_first_pass
> > > auth        requisite     pam_succeed_if.so uid >= 500 quiet
> > > auth        required      pam_deny.so
> > 
> > Ok, but is this going to work, when you have gdm configured to autologin 
> > into your account?
> 
> Sorry I don't know, I've never used autologin.
> 
This won't work with auto-login.  Gdm uses privilege escalation to
launch a user session.  With no auth-token provided by the user,
pam_keyring has nothing to use for decrypting the keyring.




[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]