Fixed issue where remote sessions could be authenticated through howdy

This commit is contained in:
boltgolt 2018-09-24 18:05:15 +02:00
parent b5c715df9a
commit 8180dafdaf
No known key found for this signature in database
GPG key ID: BECEC9937E1AAE26
2 changed files with 9 additions and 1 deletions

View file

@ -9,6 +9,9 @@ no_confirmation = false
# show an error but fail silently
suppress_unknown = false
# Disable Howdy in remote shells
ignore_ssh = true
# Auto dismiss lock screen on confirmation
# Will run loginctl unlock-sessions after every auth
# Expirimental, can behave incorrectly on some systems
@ -40,7 +43,7 @@ force_mjpeg = false
# Set the camera input profile to this width and height
# The largest profile will be used if set to -1
# Automatically ignored if not a valid profile
# Automatically ignored if not a valid profile
frame_width = -1
frame_height = -1

View file

@ -19,6 +19,11 @@ def doAuth(pamh):
if config.get("core", "disabled") == "true":
sys.exit(0)
# Abort if we're in a remote SSH env
if config.get("core", "ignore_ssh") == "true":
if "SSH_CONNECTION" in os.environ or "SSH_CLIENT" in os.environ or "SSHD_OPTS" in os.environ:
sys.exit(0)
# Run compare as python3 subprocess to circumvent python version and import issues
status = subprocess.call(["python3", os.path.dirname(os.path.abspath(__file__)) + "/compare.py", pamh.get_user()])