passwd split from shadow

Andrzej Krzysztofowicz ankry at green.mif.pg.gda.pl
Fri May 27 12:46:25 CEST 2005


Elan =?iso-8859-1?q?Ruusam=E4e?= wrote:
> i wanted to kill all suid programs from my chroot, and faced that shadow 
> package, which is required by most of programs who create/delete users 
> (sysvinit, opensshd).
> 
> what about splitting the suid passwd to separate package out of shadow 
> package? so can have /usr/sbin/{user,group}{add,del} in system and no suid 
> passwd program?

I also thougt of it.
1. It must be done paralelly in shadow and pwdutils.
2. It musy be synced with package sets for default installations to avoid
   accidentally installed default systems without a passwd program.
   No-passwd system can't be the default one at the moment.
   And beacause of this I'd suggest to leave this split for Th.
   Unless AC RM has different opinion.

> yes, i could ofcourse mount nosuid that chroot partition, if it didn't reside 
> on my main root filesystem :)

Different reasons for me. I want users to use yppasswd...

-- 
=======================================================================
  Andrzej M. Krzysztofowicz               ankry at mif.pg.gda.pl
  phone (48)(58) 347 14 61
Faculty of Applied Phys. & Math.,   Gdansk University of Technology



More information about the pld-devel-en mailing list