using /usr/bin/nologin instead of /bin/false in adduser?

To: debian-devel@lists.debian.org
Subject: using /usr/bin/nologin instead of /bin/false in adduser?
From: Marc Haber <mh+debian-devel@zugschlus.de>
Date: Sat, 13 May 2006 16:33:50 +0200
Message-id: <[🔎] 20060513143350.GO12757@torres.l21.ma.zugschlus.de>

Hi,

in login 4.0.13, /usr/bin/nologin has appeared which seems to be a
good default choice for accounts that do not allow shell login.

I am now wondering whether (and when) I should change adduser to use
/usr/bin/nologin instead of /bin/false in the default case of disabled
login.

Are we sufficiently secure if an account with that login shell is
being logged in while /usr is not yet mounted? Is it desireable to
have adduser depend on login >= 4.0.13?

Any comments will be appreciated.

Greetings
Marc

-- 
-----------------------------------------------------------------------------
Marc Haber         | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany  |  lose things."    Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature |  How to make an American Quilt | Fax: *49 621 72739835

Reply to:

Follow-Ups:
- Re: using /usr/bin/nologin instead of /bin/false in adduser?
  - From: "Bernhard R. Link" <brlink@debian.org>

Prev by Date: Re: gcc 4.1 or not
Next by Date: Re: using /usr/bin/nologin instead of /bin/false in adduser?
Previous by thread: getifaddr
Next by thread: Re: using /usr/bin/nologin instead of /bin/false in adduser?
Index(es):
- Date
- Thread