Bug#556522: hurd - using the login shell is insecure
Justus Winter, le Wed 12 Jan 2011 00:39:35 +0100, a écrit :
> diff -r a95557dc73eb debian/postrm
> --- /dev/null Thu Jan 01 00:00:00 1970 +0000
> +++ b/debian/postrm Tue Jan 11 23:38:12 2011 +0000
> @@ -0,0 +1,20 @@
> +#!/bin/sh
> +set -e
> +
> +if [ "$1" = purge ]; then
> + remove-shell /bin/loginpr
> + if ! deluser --quiet --system login > /dev/null; then
> + echo "
> +Removing the user 'login' failed, most likely because the user is still
> +logged in. To remove the user and group terminate the session in question
> +and execute
Mmm, we're talking about the hurd package, right? I doubt we should
take more care about purging it than what you propose, since it's a
required package :)
Samuel
Reply to: