29 Jun
2017
29 Jun
'17
10:09
http://bugzilla.novell.com/show_bug.cgi?id=1045886
http://bugzilla.novell.com/show_bug.cgi?id=1045886#c21
--- Comment #21 from Martin Wilck
So both users now have access to user keyring of each other.
That's a security problem by itself, even if we work around it using pam_keyinit. Activating pam_keyinit shouldn't be mandatory to keep users' keyrings separate, or we have a major security problem IMO. This "link" operation shouldn't be permitted. Sure, the key permissions will probably inhibit one user to actually *use* the other one's keys but still this feels BAD. -- You are receiving this mail because: You are on the CC list for the bug.