summaryrefslogtreecommitdiff
path: root/debian/libpam-runtime.templates
diff options
context:
space:
mode:
authorSam Hartman <hartmans@debian.org>2009-07-28 10:41:03 -0400
committerSteve Langasek <vorlon@debian.org>2019-01-08 19:41:59 -0800
commit9d5f48b99d9692def12d7d6e777816b2dc71242b (patch)
tree9671deb609d4d976c84e17e04297de55f93013a7 /debian/libpam-runtime.templates
parentcb493fdafc450e72da4b2aba1425ff8136eec5c7 (diff)
Straw man template for the note indicating system compromise.
Currently this is not tied into the debconf machinery
Diffstat (limited to 'debian/libpam-runtime.templates')
-rw-r--r--debian/libpam-runtime.templates19
1 files changed, 19 insertions, 0 deletions
diff --git a/debian/libpam-runtime.templates b/debian/libpam-runtime.templates
index 1195d9e5..ca49858d 100644
--- a/debian/libpam-runtime.templates
+++ b/debian/libpam-runtime.templates
@@ -41,3 +41,22 @@ _Description: No PAM profiles have been selected.
No PAM profiles have been selected for use on this system. This would grant
all users access without authenticating, and is not allowed. Please select
at least one PAM profile from the available list.
+
+Template: libpam-runtime/you-had-no-auth
+Type: note
+_Description: Your system allows access with no password!
+ When you configured PAM on this system, you elected to disable all
+ PAM profiles. As a result, any password will be accepted to gain
+ access to the system; even incorrect passwords will gain
+ access. Especially if this system can be accessed from the Internet,
+ it is likely that malicious software has been installed and the
+ system compromised. Unless you are familiar with recovering from
+ security failures, viruses, and malicious software you should
+ re-install this system from scratch or obtain the services of a
+ skilled system administrator. For more information see
+ http://www.debian.org/xxx
+ .
+ The PAM packaging has been improved and the automated PAM
+ configuration tool no longer permits this configuration. We
+ apologize that previous versions of the PAM configuration did not
+ detect and prevent this situation.