Bug#330420: [Pkg-shadow-devel] Bug#330420: login: Breaks system-wide
maildir spools
Christian Perrier
bubulle at debian.org
Thu Sep 29 16:19:12 UTC 2005
Quoting Henrique de Moraes Holschuh (hmh at debian.org):
> On Thu, 29 Sep 2005, Christian Perrier wrote:
> > So, as far as shadow is concerned, the following changes should take
> > place:
> >
> > -remove "noenv" for login
> > -add "session optional pam_mail.so standard" for su
>
> Wearing my QA hat, I am not satisfied with that. It is not a comprehensive
> fix, and shadow will still violate the principle of least surprise.
>
> IMHO there are two real choices:
> 1. REMOVE all login.defs MAIL support altogether, make it PAM.
> 2. Restore Maildir support to login.defs MAIL.
Moving towards a "all-PAM" behaviour is barely what upstream is
doing. And we'll try to stay as close as possible from upstream.
What I propose above goes this way and is very close to your 1. proposal
So, Tomasz, I'd really like to have your advice on this #330240 issue.
Actually, I made some testing and I really wonder what *exact* role
plays MAIL_DIR in /etc/login.defs. Commenting it does not prevent
users to have a properly set MAIL variable as long as pam_mail is in
login and su PAM config files...while suerdel still deletes the user's
mailbox when called with the -r switch.
More information about the Pkg-shadow-devel
mailing list