While I essentially agree with Roland, the GUI shouldn't be doing any of the login name validation to begin with. The orchestrator should be doing the necessary validation and informing the GUI of whether the login name is valid or not, much like PAM currently does for password management.
In this case, looking at passwd(4) manpage, it states: "The login (login) and role (role) fields accept a string of no more than eight bytes consisting of characters....." So counting in bytes looks appropriate to me. Matt's changes look good to me. -- This message posted from opensolaris.org
