5305 – pamtester truncates passwords after 31 characters, breaking use cases with long tokens/passwords

Bug 5305 - pamtester truncates passwords after 31 characters, breaking use cases with long tokens/passwords

Summary: pamtester truncates passwords after 31 characters, breaking use cases with lo...

Status:	CLOSED DUPLICATE of bug 5212

Alias:	None

Product:	ThinLinc
Classification:	Unclassified
Component:	Web Access (show other bugs)
Version:	4.2.0
Hardware:	Other Linux Red Hat

Importance:	P2 Normal
Target Milestone:	4.3.0
Assignee:	Samuel Mannehed

URL:
Keywords:

Depends on:
Blocks:

Reported:	2014-10-15 09:28 CEST by Pontus Freyhult
Modified:	2014-10-15 09:34 CEST (History)
CC List:	1 user (show)

See Also:
Acceptance Criteria:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Pontus Freyhult 2014-10-15 09:28:25 CEST

We're in the process of setting up a solution with virtual machines in OpenStack where we'll use ThinLinc for remote access with SSO based on authentication tokens from OpenStack.

However, it seems that pamtester (used by the HTML5 client service) as distributed by ThinLinc will not read more than 31 characters.

As we're using OpenStack with uuid-tokens (32 characters), we're simply working around this by trying all possible combinations for the last character but that doesn't seem like a reasonable solution for other situations (like Yubikey where the token from the Yubikey alone is 44 characters).

This is on SL 6.5, x86_64.

Comment 1 Samuel Mannehed cendio

2014-10-15 09:33:56 CEST

This is fixed in the upcoming ThinLinc release (4.3.0) which is due to arrive now in October.

*** This bug has been marked as a duplicate of bug 5212 ***

Note You need to log in before you can comment on or make changes to this bug.