[systemd-devel] keyrings and dbus
Josef Moellers
jmoellers at suse.de
Tue Jun 11 12:32:14 UTC 2019
On 11.06.19 13:27, Mantas Mikulėnas wrote:
> On Tue, Jun 11, 2019 at 1:58 PM Josef Moellers <jmoellers at suse.de
> The point is that in the gnome-terminal case, pam_keyinit.so is not
> involved.
>
>
> It is. The systemd --user instance (from which dbus-daemon and
> gnome-terminal-server descend) has its own PAM stack and can call
> pam_keyinit.so if needed.
Strange thing is, that it already does!
/etc/pam.d/systemd-user:
session optional pam_keyinit.so force revoke
So, even if a keyring exists, a new one user keyring would be created
("force"), but apparently none exists.
Josef
--
SUSE Linux GmbH
Maxfeldstrasse 5
90409 Nuernberg
Germany
GF: Felix Imendörffer, Mary Higgins, Sri Rasiah
HRB 21284 (AG Nürnberg)
More information about the systemd-devel
mailing list