[Bug 1957024] Re: pam-mkhomedir does not honor private home directories
Vladimir Petko
1957024 at bugs.launchpad.net
Thu Sep 19 23:50:17 UTC 2024
I have checked with Security Team and they advice that it is a bit late
in the cycle to make a significant change in the behaviour. Would it be
possible to obtain Feature Freeze Exception[1] for the issue if you
would like it to be included in Oracular, or resubscribe Sponsors early
in the next release cycle?
[1] https://wiki.ubuntu.com/FreezeExceptionProcess
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to pam in Ubuntu.
https://bugs.launchpad.net/bugs/1957024
Title:
pam-mkhomedir does not honor private home directories
Status in pam package in Ubuntu:
In Progress
Bug description:
As reported in https://discourse.ubuntu.com/t/private-home-
directories-for-ubuntu-21-04-onwards/19533/13:
A common situation is to have a central set of users (e.g. in LDAP)
and use pam_mkhomedir.so to create the home directory when the user
first logs in.
These changes do not cover this situation. The default configuration
of pam_mkhomedir.so will result in a home directory created with 0755
permissions.
To make pam_mkhomedir.so create a home directory by default with
permissions consistent with the other tools then a umask argument can
be added to the pam_mkhomedir.so module in the file /usr/share/pam-
configs/mkhomedir. I believe this would have to be done before
enabling the module. The file is part of the libpam-modules package.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/pam/+bug/1957024/+subscriptions
More information about the foundations-bugs
mailing list