Le 18 septembre 2010 19:07:06, Pierre Schmitz a écrit :

Hi,

this package sets a "last password change" date for the system users like "nobody" which were defined in our default /etc/shadow. It was set to 0 previously which has the special meaning of enforcing a password change on users login. As a result su $user didn't work for such users. (see pkgstats thread)

To test this change check the output of "chage -l nobody" and "su -s /bin/sh -c whoami nobody" before and after installing this package.

Please sign off,

Pierre

PS: With this fixed we might also replace sudo usage in makechrootpkg by just su.

If the following results are what you expect, then signoff x86_64 (the french message after the first "su -s ... nobody" means that password must be changed) Before : # chage -l nobody Last password change : password must be changed Password expires : password must be changed Password inactive : password must be changed Account expires : never Minimum number of days between password change : -1 Maximum number of days between password change : -1 Number of days of warning before password expires : -1 # su -s /bin/sh -c whoami nobody Vous devez changer votre mot de passe immédiatement (imposé par root) Changement du mot de passe pour nobody. Mot de passe UNIX (actuel) : su: mot de passe incorrect After : # chage -l nobody Last password change : Sep 19, 2010 Password expires : never Password inactive : never Account expires : never Minimum number of days between password change : -1 Maximum number of days between password change : -1 Number of days of warning before password expires : -1 # su -s /bin/sh -c whoami nobody nobody

[2010-09-19 01:07:06 +0200] Pierre Schmitz:

Please sign off,

signoff i686