On Wed, Dec 07, 2011 at 08:15:42PM +0800, Daniel Hartwig wrote: > Would like to know the locked status before trying su so that the > program can either fall back to sudo or give an error message more > informative than just "incorrect password". What is the security implication of letting anyone see which accounts are locked and which are not?