[Pkg-shadow-devel] Re: Bug#366545: pidentd: [security] use
/bin/nologin instead of /bin/false in /etc/passwd
Nicolas François
nicolas.francois at centraliens.net
Mon Jun 19 21:15:28 UTC 2006
On Mon, Jun 19, 2006 at 06:08:12PM +0200, Christian Perrier wrote:
>
> > To Shadow list: please consider moving:
> >
> > /usr/bin/nologin => /bin/nologin
> >
> > so that other packages could start using 'nologin' instead of current
> > /bin/false.
>
>
> This seems fair by me. I wonder whether this should deserve a
> transition or just move the binary....After all, nologin is not here
> since a long time so it's pretty unlikely that many packages use it
> (for instance to define it as some created users shell).
>
> I'm tempted to avoid a complicated transition. Advices?
What I don't understand, is why FreeBSD moved /sbin/nologin to
/usr/sbin/nologin. Don't they also have the same issue with unmounted
/usr?
If we want to be safe, we can also provide a symlink for
/usr/sbin/nologin. (I'm not sure it is really needed)
Kind Regards,
--
Nekral
More information about the Pkg-shadow-devel
mailing list