[Pkg-shadow-devel] Bug#705301: Bug#705301: login: Please enable pam_limits for su

Christian PERRIER bubulle at debian.org
Sat Apr 13 05:07:10 UTC 2013

Quoting Edward Allcutt (edward at allcutt.me.uk):
> Package: login
> Version: 1:
> Severity: normal
> Dear Maintainer,
> /etc/pam.d/su contains a line for pam_limits.so but it is commented out
> by default. This is in contrast to all the other "new session" type
> services (atd cron login sshd *dm) which have it enabled by default.
> It would be nice to have more consistency to reduce the amount of local
> configuration needed. I'm somewhat surprised pam_limits.so isn't in
> the common-session* files rather than individually in those for the
> login-type programs. Is there some reason a PAM session created by
> su (particularly su -l) should differ from those created by cron or login?

I don't remember about a specific reason mais shadow's history is long
and my memory is sometimes vanishing..:-)

Let's include PAM maintainers in the loop and eventually decide with
them if pam_limits could have good reasons to go into common-session.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-shadow-devel/attachments/20130413/cfdfe3b6/attachment.pgp>

More information about the Pkg-shadow-devel mailing list