Bug#851243: libpam-systemd: pam_systemd does not catch supplementary groups from pam_group
Juha Erkkilä
Juha.Erkkila at opinsys.fi
Mon Jan 16 06:45:25 GMT 2017
2017-01-13 18:10 GMT+02:00 Michael Biebl <biebl at debian.org>:
>
> gnome-terminal uses a systemd --user service which uses
> /etc/pam.d/systemd-user
> As you can see, this pam module does not include common-auth.
> If you add pam_group to /etc/pam.d/systemd-user I suspect it would work.
Thank you for your suggestion! However, I thought this as well and I tried
it,
but this did not work for me. Here is my /etc/pam.d/systemd-user:
---
# This file is part of systemd.
#
# Used by systemd --user instances.
auth optional pam_group.so
@include common-account
session required pam_selinux.so close
session required pam_selinux.so nottys open
session required pam_loginuid.so
session required pam_limits.so
@include common-session-noninteractive
session optional pam_systemd.so
---
Using "auth" here because pam_group(8) says "Only the auth module type is
provided".
Probably this service does not do any authentication, though?
Juha
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-systemd-maintainers/attachments/20170116/8b2b97b1/attachment-0002.html>
More information about the Pkg-systemd-maintainers
mailing list