Bug#1077676: pcscd: unprivileged users not authorized to access OpenPGP smart cards

[Gian Piero Carrubba]

> dpkg -l \*elogin\* \*systemd\* | grep ^ii
ii  elogind                     255.5-1debian2 amd64        user, seat and session management daemon
ii  libpam-elogind:amd64        255.5-1debian2 amd64        elogind PAM module
ii  libsystemd0:amd64           256.4-2        amd64        systemd utility library
ii  systemd-standalone-sysusers 256.4-2        amd64        standalone sysusers binary for use in non-systemd systems

> cat /etc/pam.d/common-session
#
# /etc/pam.d/common-session - session-related modules common to all services
#
# This file is included from other service-specific PAM config files,
# and should contain a list of modules that define tasks to be performed
# at the start and end of interactive sessions.
#
# As of pam 1.0.1-6, this file is managed by pam-auth-update by default.
# To take advantage of this, it is recommended that you configure any
# local modules either before or after the default block, and use
# pam-auth-update to manage selection of other modules.  See
# pam-auth-update(8) for details.

# here are the per-package modules (the "Primary" block)
session	[default=1]			pam_permit.so
# here's the fallback if no module succeeds
session	requisite			pam_deny.so
# prime the stack with a positive return value if there isn't one already;
# this avoids us returning an error just because nothing sets a success code
# since the modules above will each just jump around
session	required			pam_permit.so
# reset the umask for new sessions
session optional			pam_umask.so
# and here are more per-package modules (the "Additional" block)
session	required	pam_unix.so 
session	optional			pam_elogind.so 
# end of pam-auth-update config

> loginctl list
No sessions.