Bug#351631: [Pkg-shadow-devel] Bug#351631: passwd: Please compile
with SE Linux support
Russell Coker
russell at coker.com.au
Tue Feb 7 00:03:16 UTC 2006
On Tuesday 07 February 2006 04:18, Christian Perrier <bubulle at debian.org>
wrote:
> > Please remove the --without-selinux from debian/rules. This will not
> > alter the functionality on a non-SE system, but makes a big difference
> > when running SE Linux.
>
> I see no objection to this. Last time we were considering this, Manoj
> suggested another way to go (namely use/support pam_selinux,
> IIRC). Manoj, would you care commenting?
Currently useradd/userdel make a SE Linux system unusable and unbootable, the
change I request fixes that. The base functionality of /bin/passwd works,
but it doesn't perform checks for SE Linux permission, so root:user_r:user_t
can change passwords for any user. This is also fixed by the change I
request.
PS You will also need to make it build-depend on libselinux1-dev.
More information about the Pkg-shadow-devel
mailing list