Top and Bottom panels show up on a Locked Ubuntu Screen when a window pops up (e.g. Updates/aMSN chat window)

Are you using compiz, metacity, KDE, or something else for your window manager?

I have all the predefined settings on gnome (i.e. compiz is enabled for my graphics adapter; happens to be ATI Mobility Radeon X1400 ) but I had the Appearance setting changed from Normal to Extra right after installing. I don't have any extras like Metacity. I do have KDE packages installed, as I have (sometimes) been using kAlarm

I can now confirm that the problem also exists on the 64-bit version of Jaunty.

I also (personally) think that is it Not a matter of Low importance; anything that could 'provide' secure data leakage to any unauthorised entity (anyone who without the account password can check out the bar contents by just looking at a locked system) is a Security matter, and ultimately, High.

Was just able to confirm this on Jaunty (i686) using:

sleep 10; xmessage Hello

Then locking the screen. After ten seconds, the panels emerge from the darkness.

Using compiz on Intel 915GM, so it's not just an ATI issue.

Did not quite expect this to be verified for NVIDIA as well... usually it's ATI + Ubuntu that have the loud bed fights.

Another reason why this is important; a Disturbing security matter, and frankly, something one would only expect from a Windows system.

Disabling Compiz (setting the Visual Effects to None on Appearance settings) prevents the panels from showing up on a locked terminal; this however is just a workaround and obviously not the solution...

Intrepid x86_64 is affected as well (just tried it using the xmessage test). ATI Radeon X1300 Pro. I guess I've never noticed it on Intrepid because the update notification window doesn't automatically open there.

Is this still an issue on Jaunty or Karmic?

Yes. Just tested again (using the simple test above) on my Jaunty system.

Does this problem go away if you disable Unredirect Fullscreen Windows? You can do so from ccsm or by opening gconf-editor and going to /apps/compiz/general/screen0/options and unchecking unredirect_fullscreen_windows.

unredirect_fullscreen_windows was already turned off on my system. Toggling that option does not appear to change the outcome of the test, unfortunately.

Hrm, that's odd, I can only reproduce when I have unredirect fullscreen windows enabled. This is still on the X1300 card? I think the fix for this is actually DRI2 but I'm not sure if we have that for ATI even in karmic.

This was on my Jaunty system with the Intel 915GM. I just verified that turning off the "unredirect fullscreen windows" appears to solve the problem on my ATI X1300 system (still running Intrepid), so at least one system is fixed! :)

Thank you for taking the time to report this bug and helping to make Ubuntu better. The issue that you reported is one that should be reproducible with the live environment of the Desktop CD of the development release - Karmic Koala. It would help us greatly if you could test with it so we can work on getting it fixed in the next release of Ubuntu. You can find out more about the development release at http://www.ubuntu.com/testing/. Thanks again and we appreciate your help.

As I can no longer reproduce on karmic with this option disabled it is possible something else in the intel driver or in compiz solved the problem.

Thanks for the help people, I cannot currently check this against the latest Beta as all my systems are on a very, Very specific stable installation for the next couple weeks.

Please, as some of you will probably have installed a Karmic test version (or are about to), check the bug against it BEFORE applying any changes to your system.

Just a comment: People seem to be working "blindly" on this one; meaning that we can 'assume' that something has fixed the issue with most chances being the new login system (acting as a built-in module rather than an application) [this however is just my PERSONAL view of it and might be wrong]. Let's check. I still would put this on TOP of a security-oriented bug list and would personally enjoy having an out-of-box ultimately secure system which is where Linux (and UNIXoids) get their most credits...

We are closing this bug report because it lacks the information we need to investigate the problem, as described in the previous comments. Please reopen it if you can give us the missing information, and don't hesitate to submit bug reports in the future. To reopen the bug report you can click on the current status, under the Status column, and change the Status back to 'New'. Thanks again!

I apologize for forgetting about this bug.

I actually upgraded to Karmic recently; I ran my test case and this bug appears to be fixed on my system. Thanks!