[Pkg-shadow-devel] A general summary about the shadow package bugs

[Christian Perrier]

People, after the huge work we recently did and the last rush I did
while travelling by train to my mom's place, here's the general status
of the shadow package bug log, along with a few comments on each.


We have 21 bugs left opened for shadow

WONTFIX BUGS
------------

#311058: login: pam_limits.so in pam.d/su breaks "nice su -c foo bar"

     Here the bug submitter agrees that the bug really belongs to
     libpam-modules and just proposes keeping it "for documentation
     purposes". I'm not fond of this and at some moment, I could
     decide to just close the bug

#47467:  passwd: chfn/chsh should change GECOS/shell through NIS

     Adding this feature, which is anyway a "high level" feature,
     need a full redesign of the NSS functions in the glibc
     There is no important value added to this

#332911: passwd: Please use the "useful groups" option of adduser when available

     Actually needs a new feature in adduser

#262453: login: su, sudo: Local security hole -- arbitrary character injection

     The bug seems pretty rethorical and not everyone agrees it's
     worth "fixing" it.

WAITING BUGS
------------

#276419: su appends the positional args to the command line

     Our pet bug...:-)
     Still needs someone writing a good and concise explanation
     of the problem, then warn the maintainers of packages we
     know would be affected, as well as send a general warning
     in -devel
     Then give instructions to change these packages behaviour
     with the detailed explanations of Helmut Waitzmann and finally
     apply the proposed patch

UNDER WORK BUGS
---------------

#334803:  login: suspend command from su shell doesn't work again

     Alexander is working on it

#277767:   su segfaults using encrypted LDAP

     Alexander will try to reproduce it but it needs a quite
     complicated setup to do so

#332198:   login: unable to determine TTY name, got /dev/pts/1

     We're still trying to figure out whether there is a bug
     or not. Not really clear as the bug is not easy to
     reproduce by the bug submitter

#260149:   usermod: Support gnu --long options like in useradd, groupadd

     Tomasz basically said "I'd appreciate some help to convert all
     utilities to long options use"
     Christian jumped in and is preparing a patch for usermod

#333138:   chfn behaves bogusly when either fd 0, 1 or 2 is not a tty

     Discussion was in progress. Alexander seems working on the issue

FORWARDED UPSTREAM WITH PATCH (not applied yet)
-----------------------------

(we can fix them in Debian before upstream)

#190252: vipw should offer a quiet mode and display to stdout
#296729: useradd does not preserve sticky bits on directories from the skeleton
#62821 : vipw should prompt to edit shadow for consisistency
#87648 : libpam-runtime: pam ignores FAIL_DELAY
#187921: login: PAM service for login is fixed.
#190215: login: su should log successful root logins with LOG_NOTICE, like login does


FORWARDED UPSTREAM, NO PATCH PROPOSED
-------------------------------------

#259494: /usr/bin/lastlog: needs option to display users with uid >=
1000

     This seems complicated to fix. Not much activity until now

#333706: useradd lacks -r option
     
     Disagreement from Tomasz who does not like Redhat choice for LSB
     Proposed patch is a big mess of Redhat changes. Useless as is.


FIXED UPSTREAM (will be fixed in 4.0.13 upload)
-----------------------------------------------

334264: shadow: [INTL:sv] Swedish debconf templates translation
335381: [INTL:uk] Updated Ukrainian program translation (online) 

FIXED ISSUES ?
--------------

295416: userdel should not remove the group which is primary for someone else

      Seems fixed as Toimasz applied one of the two proposed patches
      The other one is maybe not needed



--