[Pkg-shadow-devel] Musings about Usernames in adduser and Debian
Gioele Barabucci
gioele at svario.it
Tue Dec 3 16:46:00 GMT 2024
On 03/12/24 17:20, Marc Haber wrote:
> What I intend to do in adduser for the next unstable upload is:
>
> - adduser --system's user name validation will not change
> - I'll make sure that adduser <normal user account> doesn't accept
> UTF-8 user names, bringing it closer to systemd's notion of a valid
> user name
> - adduser --allow-bad-names will still allow UTF-8 usernames, not doing
> normalization. I will document this and make it clear that the local
> admin needs to make sure that they don't allow things they don't want
> to have
Dear Marc,
in preparation for a PRECIS future, couldn't adduser pass the usernames
through NFC instead of doing no normalization?
RFC 8264 5.2.4 Normalization Rule states:
In accordance with [RFC5198], Normalization Form C (NFC) is
RECOMMENDED.
[1] https://www.rfc-editor.org/rfc/rfc8264.html#section-5.2.4
Regards,
--
Gioele Barabucci
More information about the Pkg-shadow-devel
mailing list