Bug#330420: [Pkg-shadow-devel] Bug#330420: login: Breaks system-wide maildir spools

Christian Perrier bubulle at debian.org
Thu Sep 29 16:19:12 UTC 2005


Quoting Henrique de Moraes Holschuh (hmh at debian.org):
> On Thu, 29 Sep 2005, Christian Perrier wrote:
> > So, as far as shadow is concerned, the following changes should take
> > place:
> > 
> > -remove "noenv" for login
> > -add "session    optional   pam_mail.so standard" for su
> 
> Wearing my QA hat, I am not satisfied with that. It is not a comprehensive
> fix, and shadow will still violate the principle of least surprise.
> 
> IMHO there are two real choices:
>  1. REMOVE all login.defs MAIL support altogether, make it PAM.
>  2. Restore Maildir support to login.defs MAIL.


Moving towards a "all-PAM" behaviour is barely what upstream is
doing. And we'll try to stay as close as possible from upstream.

What I propose above goes this way and is very close to your 1. proposal

So, Tomasz, I'd really like to have your advice on this #330240 issue.

Actually, I made some testing and I really wonder what *exact* role
plays MAIL_DIR in /etc/login.defs. Commenting it does not prevent
users to have a properly set MAIL variable as long as pam_mail is in
login and su PAM config files...while suerdel still deletes the user's
mailbox when called with the -r switch.






More information about the Pkg-shadow-devel mailing list