Red Hat Bugzilla – Bug 480077
RFE: make user remove smartcard on screen lock or logout
Last modified: 2014-06-09 10:43:11 EDT
Description of problem:
When users use smartcards to log in, they frequently forget to take them back out when locking the screen or logging out. Remind them, perhaps by playing a sound, or showing a message, or even refusing to complete the (user-requested) screen lock or logout until the smartcard is removed.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Log in with a smartcard.
2. Lock the screen.
3. Walk away.
The screen is locked and I am gone; an interloper only has to type a smart card PIN to unlock it. Security is degraded.
A reminder happens, I take the smartcard with me, the screen locks, and an interloper has to forcibly obtain my smartcard from my person, get back to my computer AND type a PIN to unlock my screen. Security is upheld.
This bug/component is not included in scope for RHEL-5.11.0 which is the last RHEL5 minor release. This Bugzilla will soon be CLOSED as WONTFIX (at the end of RHEL5.11 development phase (Apr 22, 2014)). Please contact your account manager or support representative in case you need to escalate this bug.
Thank you for submitting this request for inclusion in Red Hat Enterprise Linux 5. We've carefully evaluated the request, but are unable to include it in RHEL5 stream. If the issue is critical for your business, please provide additional business justification through the appropriate support channels (https://access.redhat.com/site/support).