Red Hat Bugzilla – Bug 163914
XDM gives administrator authorization immeditely after login
Last modified: 2013-07-02 19:08:27 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.8) Gecko/20050513 Fedora/1.7.8-2
Description of problem:
When I login with a standard account using the "Graphical Greeter" I have immediate access to the root commands from the menu (e.g. Gnome start button->Desktop->System Settings->Root Password) without entering the root password.
The 'Shield icon' also appears in the panel (eventually, after Nautilus starts).
I am not sure if this has always happened after I installed FC4, or only after my last logout with the 'save session' option checked, where I _might_ have had the root authorization.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
2. Press CTRL+ALT+Backspace just to be sure
4. Hit Gnome start button->Desktop->System Settings->Root Password
Actual Results: The Root Password application started
Expected Results: It should have said:
You are attempting to run "system-config-rootpassword" which requires administrative privileges, but more information is needed in order to do so.
and asked for the root password
This is not specific to the Root Password application.
I did some more testing: it is the 'save settings' that also saves the root
access status. I am pretty sure that is not the desired behavior.
1. Wait for the 'shield' to go away in the Panel.
2. Logout with 'save settings'
3. Log back in.
Now the privileged applications prompt for password, as expected.
4. Enter the root password to gain access to one of the applications.
5. Logout with 'save settings'
and you are back as above: you have full root access from the moment you log in.
I don't see the connection between the reported problem and the
xinitrc package, so I'm assuming this was misfiled against the
I'm not sure what the correct component is, so I'll take a stab at
it... reassigning to "usermode", which I think handles the
root priv stuff. Please reassign to the more appropriate
component if that's not correct.
I'm unable to reproduce it. I don't have root privileges even if I was a former
root. It looks like a race condition with pam_panel_icon what requires that you
login as root, log out and quickly login as an unprivileged user. Does it
happens when you wait a while (say 1min between the logins)?
I can not reproduce this on a up-to-date FC4 installation. I don't know what
changed the behavior, but it is OK now.
Changed to WORKSFORME.