Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
Bug 52010 - Can Shutdown/Restart Server w/o Logging In
Can Shutdown/Restart Server w/o Logging In
Product: Red Hat Public Beta
Classification: Retired
Component: gdm (Show other bugs)
i386 Linux
medium Severity medium
: ---
: ---
Assigned To: Havoc Pennington
Aaron Brown
: Security
Depends On:
  Show dependency treegraph
Reported: 2001-08-18 10:19 EDT by Brian Z
Modified: 2007-04-18 12:36 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2001-08-20 09:53:14 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Brian Z 2001-08-18 10:19:23 EDT
Description of Problem:
At the GDM login prompt, I am able to shutdown and restart the server 
without logging in.  This shows a lack of security, since any user can 
walk by the computer and shutdown/restart it.  Win NT Server & 2000 
Server force the administrator to log in to use these options.

Version-Release number of selected component (if applicable):

How Reproducible:

Steps to Reproduce:
1.  At the GDM Login Prompt, click System
2.  Click Shutdown or Restart
3.  Watch System Shutdown/Restart

Actual Results:
Server restarts/shutdown.

Expected Results:
To be Prompted for root password to restart/shutdown.

Additional Information:
Comment 1 Havoc Pennington 2001-08-20 10:56:11 EDT
You can also type "ctrl-alt-del" at the console, always have been able to.

If you want to disable this, there are options in /etc/X11/gdm/gdm.conf, and 
you can turn off ctrl-alt-del in /etc/inittab. People can still hit the power
button though, if you haven't physically concealed it.

Note You need to log in before you can comment on or make changes to this bug.