Bug#333862: debian-policy: Policy forbids account creation
On Fri, Oct 14, 2005 at 10:07:04AM +0200, Marc Haber wrote: Package: debian-policy Version: 3.6.2.1 Severity: normal Policy 9.2.1 says: Packages other than base-passwd must not modify /etc/passwd, /etc/shadow, /etc/group or /etc/gshadow. This makes, for example, the passwd package RC buggy since useradd modifies /etc/passwd. Also exim4 is RC buggy since its maintainer scripts modify /etc/passwd by calling adduser which in turn calls useradd which in turn modifies /etc/passwd while not belonging to base-passwd. The section in the policy should say Packages other than base-passwd must not modify /etc/passwd, /etc/shadow, /etc/group or /etc/gshadow directly from their maintainer scripts. The usage is consistent with other parts of policy; to talk about a package which performs some action is different from a package which contains programs which perform the action. -- - mdz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#333862: debian-policy: Policy forbids account creation
On Fri, Oct 14, 2005 at 08:46:57PM +1000, Ben Finney wrote: The section in the policy should say Packages other than base-passwd must not modify /etc/passwd, /etc/shadow, /etc/group or /etc/gshadow directly from their maintainer scripts. I'd suggest: Maintainer scripts for packages must not modify any of /etc/passwd, insert directly here /etc/shadow, /etc/group or /etc/shadow, with the sole exception of the base-passwd package. Julian -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#333862: debian-policy: Policy forbids account creation
Package: debian-policy Version: 3.6.2.1 Severity: normal Policy 9.2.1 says: Packages other than base-passwd must not modify /etc/passwd, /etc/shadow, /etc/group or /etc/gshadow. This makes, for example, the passwd package RC buggy since useradd modifies /etc/passwd. Also exim4 is RC buggy since its maintainer scripts modify /etc/passwd by calling adduser which in turn calls useradd which in turn modifies /etc/passwd while not belonging to base-passwd. The section in the policy should say Packages other than base-passwd must not modify /etc/passwd, /etc/shadow, /etc/group or /etc/gshadow directly from their maintainer scripts. Greetings Marc -- System Information: Debian Release: testing/unstable Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.13-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#333862: debian-policy: Policy forbids account creation
On 14-Oct-2005, Marc Haber wrote: Policy 9.2.1 says: Packages other than base-passwd must not modify /etc/passwd, /etc/shadow, /etc/group or /etc/gshadow. This makes, for example, the passwd package RC buggy since useradd modifies /etc/passwd. I don't think that can be interpreted as the package modifies /etc/passwd; it's a command already installed on the system, not part of a package. Isn't every proscription in Policy to be taken in the context of packages, not behaviour of already-installed system commands? Also exim4 is RC buggy since its maintainer scripts modify /etc/passwd by calling adduser which in turn calls useradd which in turn modifies /etc/passwd while not belonging to base-passwd. That's borderline enough to need clarification, I agree. The section in the policy should say Packages other than base-passwd must not modify /etc/passwd, /etc/shadow, /etc/group or /etc/gshadow directly from their maintainer scripts. I'd suggest: Maintainer scripts for packages must not modify any of /etc/passwd, /etc/shadow, /etc/group or /etc/shadow, with the sole exception of the base-passwd package. -- \ If you're a horse, and someone gets on you, and falls off, and | `\ then gets right back on you, I think you should buck him off | _o__) right away. -- Jack Handey | Ben Finney [EMAIL PROTECTED] signature.asc Description: Digital signature
