20130805 disabling the gnome 3 user list - plembo/onemoretech GitHub Wiki

title: Disabling the gnome 3 user list link: https://onemoretech.wordpress.com/2013/08/05/disabling-the-gnome-3-user-list/ author: phil2nc description: post_id: 6180 created: 2013/08/05 08:47:40 created_gmt: 2013/08/05 12:47:40 comment_status: closed post_name: disabling-the-gnome-3-user-list status: publish post_type: post

Disabling the gnome 3 user list

To disable the Gnome 3 login list as found in Fedora 17+, and soon, Red Hat Enteprise Linux, read on. [NOTE: If you're running Fedora 21, see this post instead!] I think all experienced system administrators would agree with this statement from 2010 found in Red Hat Bug 666330:

The gdm greeter displays a list of all valid user accounts. That is not acceptable for an Enterprise Class OS. It is a significant security lapse that should have been corrected before GA.

My only emmendation would be to insert the word "juvenile" between the words "significant" and "security". The Gnome login user list is one of the more annoying "features" that has crept into enterprise Linux over the years. The solution that follows works in Gnome 3. It appears on StackExchange, among other places. Create a new file /etc/dconf/db/gdm.d/01-local-settings. Edit to include the following:

[org/gnome/login-screen]
disable-user-list=true

Update the dconf db:

dconf update

Restart gdm:

systemctl restart gdm

That's all there is to it. In earlier versions of Fedora and RHEL the cure was to log in as root and use gconftool-2 to edit gdm's Gnome configuration with the following commands:

xhost +SI:localuser:gdm

sudo -u gdm \
gconftool-2 \
--type bool \
--set /apps/gdm/simple-greeter/disable_user_list true

Although the aforementioned bug was closed, the behavior of defaulting to listing all system users on the login page has persisted in RHEL 6. Apparently Microsoft envy has overcome both the Gnome and Red Hat crews to the point that they're incapable of fixing this. As a result we're all going to simply add this to the ever growing list of stupid, juvenile crap that we have to correct before putting a system into production.

Copyright 2004-2019 Phil Lembo