Re: Musings about Usernames in adduser and Debian
On Tue, Dec 03, 2024 at 05:46:00PM +0100, Gioele Barabucci wrote:
> On 03/12/24 17:20, Marc Haber wrote:
> > What I intend to do in adduser for the next unstable upload is:
> >
> > - adduser --system's user name validation will not change
> > - I'll make sure that adduser <normal user account> doesn't accept
> > UTF-8 user names, bringing it closer to systemd's notion of a valid
> > user name
> > - adduser --allow-bad-names will still allow UTF-8 usernames, not doing
> > normalization. I will document this and make it clear that the local
> > admin needs to make sure that they don't allow things they don't want
> > to have
>
> Dear Marc,
>
> in preparation for a PRECIS future, couldn't adduser pass the usernames
> through NFC instead of doing no normalization?
>
> RFC 8264 5.2.4 Normalization Rule states:
>
> In accordance with [RFC5198], Normalization Form C (NFC) is
> RECOMMENDED.
that would solve the étienne and étienne issue (where the two characters
are just different renderings of the same character), but not the
Ohm-against-Omega issue, right?
While this seems the right thing to do, I think this should be done in
useradd (pkg:shadow), in the respective upstream project, so that all
Linux distributions get the same behavior.
I have filed https://github.com/shadow-maint/shadow/issues/1138 in the
general regard. Feel free to add what I fotgot to mention there.
I'd rather not have this can of worms in adduser, but I'd consider a
patch.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Leimen, Germany | lose things." Winona Ryder | Fon: *49 6224 1600402
Nordisch by Nature | How to make an American Quilt | Fax: *49 6224 1600421
Reply to: