Main Inclusion Report for thinkfinger

Requirements

1. Availability: http://archive.ubuntu.com/ubuntu/pool/universe/t/thinkfinger; available for all supported architectures, though please examine the package in my PPA http://launchpad.net/~keybuk/+archive since it contains extra patches

2. Rationale:

   • Shipped in new laptops by persuasive manufacturers

3. Security:

   • CVE entries: None

   • Secunia history: None

   • No binaries running as root or suid/gid
   • No daemons

   • Uses the uinput kernel module, in order to be not root, this has to be writable by the current user; HAL patch exists to do this with PK (in same PPA)

   • No network connectivity

   • Source code review performed by ScottJamesRemnant

4. Quality assurance:

   • Package requires PAM configuration, updated libpam-runtime in PPA to provide this.

   • Package has no side-effect if no fingerprint reader is present, or user hasn't enrolled.
   • No debconf questions, 'medium' or otherwise.

   • Debian bugs: Nothing replicable on Ubuntu

   • Maintenance in Debian is calm.

   • Upstream believes thinkfinger is complete and is now working on fprint which is a different way of doing it, migration will be possible later.

   • Hardware: Package uses libusb to communicate with the fingerprint reader (if present), includes FDI and PK policy to make that accessible by active console users.

5. Standards compliance:

   • FHS, Debian Policy compliant

   • Debian library packaging guide standards compliant

   • Packaging system debhelper. No unusual packaging practices.

6. Dependencies:

   • libusb (main)
   • libpam0g (main)

Reviewers

MIR bug: https://bugs.launchpad.net/194458

ScottJamesRemnant