[2010-09-13 18:00:07 +0200] Pierre Schmitz: > On Mon, 13 Sep 2010 16:52:07 +0200, Gaetan Bisson > <[email protected]> wrote: > > > > This can be overriden by "su -s /bin/sh nobody"; the issue here is that > > the third field of nobody's entry in /etc/shadow (which indicates when > > the password was last changed) is set to "0" (any positive value would > > work). > > Interesting. I wonder if that is a bug in our default shadow file or > some weired feature. Shouldn't this just be empty to disable password > aging?
I think so - FWIW, I can't think of any reason why we would want password aging for system accounts. -- Gaetan
