[Pkg-xfce-devel] Bug#884550: Bug#884550: regression(?) in greeter-hide-users=true behavior
Benjamin Kaduk
kaduk at mit.edu
Sun Dec 17 19:02:59 UTC 2017
On Sun, Dec 17, 2017 at 04:28:36PM +0100, Yves-Alexis Perez wrote:
> On Sat, 2017-12-16 at 09:40 -0600, Benjamin Kaduk wrote:
> > After my latest upgrade/reboot, the behavior of lightdm has changed.
> > Previously, on fresh boot and lock screen I would be
> > presented with a username/password entry dialog with empty username,
> > empty password, and focus on username. The new behavior has
> > username pre-populated and focus on password. (Is this more likely
> > to be lightdm-gtk-greeter or lightdm itself?)
>
> Yes, lightdm-gtk-greeter changed behavior with 2.0.3: it pre-fills the
> username when the screen is locked with the current logged-in user (not sure
> of the behavior when multiple users are locked).
Doing this for locked screen seems pretty defensible; I don't log
out or boot up cleanly enough to notice the behavior for
non-lock-screen cases.
> > My understanding is that greeter-hide-users=true is intended to not
> > give any indication of the valid users on the machine, whether
> > currently/previously logged in or not. (If I am in error here,
> > please accept my apologies and close the report.) I think I am
> > using an unmodified stock debian config,
>
> Not sure about upstream stance on this, but I configured the Debian default to
> be a bit privacy-conscious and not expose every username just by booting the
> system. I'm not overly concerned with the lock screen (afair xscreensaver did
> the same thing before we switched to light-locker), but if it's a concern to
> you I can propagate this to upstream.
I think my main concern is just knowing with some confidence that I
should retrain my muscle memory/expectations; I don't think there's
a need to forward the issue to upstream just on my behalf.
Thanks for the explanation,
Ben
More information about the Pkg-xfce-devel
mailing list