[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#771925: Bug#761215: base-passwd: Changes made to passwd file without administrator permission

Hi.

On Thu, Sep 11, 2014 at 06:59:57PM -0700, Russ Allbery wrote:
> debian@j.hallam.dk writes:
> 
> > Since the shell entry for news is set deliberately by me, I expect
> > base-passwd to ASK whether it may change it.
> 
> It does, but it asks with a debconf prompting level chosen via an educated
> guess about some combination of how likely it is that the change was
> important, intentional, not spammy on upgrades, etc.  It sounds like that
> heuristic failed in your case.  Unfortunately, we have to make a guess at
> what priority to use for everyone.
> 
> The general rule of thumb is that changes to home directories, UIDs, GIDs,
> or removing a user entirely are asked with high priority, changes to
> shells are asked with medium priority, and changes to GECOS and some other
> low-impact stuff are asked with low priority.  So you would need your
> prompting level set to medium or lower to see the prompts about shell
> changes.
> 

IIUC, such changes to user shells that may happen without administrator confirmation, even if desirable, may need some documentation in the release notes.

Hence, FYI, my request per #771925.

Hope this helps.

Best regards,
-- 
Olivier BERGER 
(OpenPGP: 4096R/7C5BB6A5 : http://weusepgp.info)
http://www.olivierberger.com/weblog/
Reply to: