http://bugzilla.novell.com/show_bug.cgi?id=604574 http://bugzilla.novell.com/show_bug.cgi?id=604574#c0 Summary: first enrolling of a user's fingerprint sets the root fingerprint Classification: openSUSE Product: openSUSE 11.2 Version: Final Platform: x86-64 OS/Version: openSUSE 11.2 Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: s2@forceway.com QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.9) Gecko/20100317 SUSE/3.5.9-0.1.1 BetterPrivacy-1.47 Firefox/3.5.9 Enable fingerprint reader in yast fingerprint module. Open yast users module. Enroll a fingerprint for a user. The same fingerprint is now set for the root user. i.e. that user can now login as root, su, or sudo, and have super user priviliges. this bad. Reproducible: Always Steps to Reproduce: 1.enable fingerprint in yast 2.enroll user fingerprint in yast 3.look in /root/.fprint.. user can login to root with his/her finger. Actual Results: a users fingerprint is erroneously assigned to the root user account. Expected Results: root fingerprint should not be assigned. Using a microsoft fingerprint reader. rpm -qa "*fprint*" libfprint-devel-0.0.6-12.3.x86_64 libfprint0-32bit-0.0.6-12.3.x86_64 libfprint0-0.0.6-12.3.x86_64 rpm -qa "*pam_fp*" pam_fp-0.1-15.3.x86_64 pam_fp-32bit-0.1-15.3.x86_64 rpm -qa "*fingerp*" yast2-fingerprint-reader-2.18.1-2.1.x86_64 -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.