Re: [dev] slock with non-system auth

From: Moritz Wilhelmy <crap_AT_wzff.de>
Date: Sun, 20 Dec 2009 12:03:19 +0100

On Sun, Dec 20, 2009 at 11:53:02AM +0100, markus schnalke wrote:
> [2009-12-19 21:37] pancake <pancake_AT_youterm.com>
> >
> > I have done two patches for slock.
> >
> > The first simplifying the use of cpp and the other adding user
> > defined password.
>
> The password should probably not be a clear text string inside the
> binary file, as one can easily read it with `strings slock'.
>
> Is there a secure hash function in standard C? I think not. Linking
> some external library for this, seems to be overkill.
>
> Maybe we could give slock a system account to check the password
> against. Thus it must not to be the own account, but can be a special
> slock system user, which exists just for this task.
>
> Unfortunately only root users will have the ability to set different
> passwords then.
>
>
> meillo
>
>

And only root-users will be able to use slock then, so it doesn't
work for people working on public machines, for instance at university.

Moritz
Received on Sun Dec 20 2009 - 11:03:19 UTC

This archive was generated by hypermail 2.2.0 : Sun Dec 20 2009 - 11:12:02 UTC