https://bugzilla.suse.com/show_bug.cgi?id=1216080 Bug ID: 1216080 Summary: cockpit-ws: /etc/cockpit/disallowed-users is ignored Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Other Assignee: Cockpit-bugs@suse.de Reporter: amajer@suse.com QA Contact: qa-bugs@suse.de Target Milestone: --- Found By: --- Blocker: --- This affects all cockpit versions, not just TW. The default configuration we show in /etc/cockpit/disallowed-users, # List of users which are not allowed to login to Cockpit root but this list is ignored and root can login. What is missing this in /etc/pam.d/cockpit auth required pam_listfile.so item=user sense=deny file=/etc/cockpit/disallowed-users onerr=succeed followed by rest of the file. So we should either not ship this file, or setup pam accordingly. -- You are receiving this mail because: You are on the CC list for the bug.