shadow/TODO

128 lines
4.2 KiB
Plaintext
Raw Permalink Normal View History

2021-08-18 23:36:02 +05:30
* Create a common usage function that'd take the array of
2009-09-06 01:56:09 +05:30
long options and an array of descriptions and output that so things would
be standardized across the utils.
Usage strings should be normalized and split first.
Investigate optparse.
/etc/default/useradd
* GROUP=1000 should accept a group name.
2009-07-24 01:10:00 +05:30
Check when RLOGIN is enabled if ruserok() exists
2009-04-11 21:54:06 +05:30
Move selinux_file_context out of libmisc/copydir.c
2009-04-12 06:08:41 +05:30
Review hardcoded root account?
2009-04-06 05:20:58 +05:30
review all call to strto
2009-03-16 03:08:46 +05:30
libmisc/cleanup_user.c
cleanup needed (cleanup_report_add_user* not used)
libxcrypt support
* http://wiki.linuxfromscratch.org/patches/browser/trunk/shadow/shadow-4.0.18.1-owl_blowfish-1.patch
2008-09-05 02:11:18 +05:30
implement getlong, getulong.
avoid atoi, atol, atoul, strtol, strtoul, ...
manpages: comment the RLOGIN parts
2008-08-31 23:00:37 +05:30
Replace build_list (in lib/gshadow.c) and list (in lib/sgetgrent.c) by
comma_to_list()
Revert the modified files if all files could not be changed.
* or warn and indicate which files were modified and which were not.
* check the order the files are modified.
report nscd_flush_cache failures?
2008-09-05 02:11:18 +05:30
call nscd from the programs or from lib (commonio?)
2008-09-05 02:11:18 +05:30
PAM: check if a non-interactive conversation function could be used to set
the password in chpasswd and newusers
2008-05-24 02:17:45 +05:30
2008-04-03 03:12:04 +05:30
WITH_SELINUX
- review all tools to check that the strategies are consistent
chage, chfn, chsh: same change needed as in passwd.
- probably need moving check_selinux_access to a separate file.
testsuite
- newgrp
- test with unknown user's GID
newusers
- add logging to SYSLOG & AUDIT
- use CREATE_HOME
- Add a -Z option (see useradd / usermod)
Document when/where option appeared, document whether an option is standard
or not.
2007-11-28 01:15:36 +05:30
Check all the expiry semantics
ALL:
- move base passwd/shadow/group/gshadow operation to module for allow write
2007-11-17 22:03:33 +05:30
different backend modules for db, NIS, LDAP and others. Default backend it
will be goot if will be chosen depending on /etc/nsswitch.conf and allow
override this by -r <repository> options (where the <repository> can be
file, db, nis nisplus, ldap .. like on /etc/nsswitch.conf in service column).
passwd have old piece of code with handling -r option and it will be good
finish this and propagate on other shadow tools for allow operate on other
user databases by well known tools.
2009-03-07 21:59:28 +05:30
- Protect against signals. Register do_cleanups in a signal handler.
2009-03-14 18:51:15 +05:30
- login.defs
- generate depending on configuration
2008-09-05 02:11:18 +05:30
- useradd:
- add handle create user mail spool in maildir format.
2008-08-31 23:00:52 +05:30
- Add support for -k in -D mode
- Add support for -K in -D mode
2008-08-31 23:00:52 +05:30
- Add option to create or not the mail spool (and set the default in -D
mode)
2009-03-14 18:51:15 +05:30
- Change -l to reset the entry if an entry was already there
2009-03-07 21:59:28 +05:30
- set the mask in mkdir?
- userdel:
2007-11-17 22:03:33 +05:30
- add backup option for the removal of user resources,
2007-11-20 19:12:18 +05:30
- user_busy: check that the user is not running any processes.
2008-09-05 02:11:18 +05:30
- missing "deleting group" FAILED
- home dir removed, but userdel may fail and may leave the user
=> warning needed
- usermod
2009-03-14 18:51:15 +05:30
- add an option equivalent to useradd's -l (only when uid is changed)
- the mode of new home directories should be set according to the
original mode. Does copy_tree does this?
2009-04-15 03:49:17 +05:30
- user renamed, order is not kept in /etc/group (see
47_usermod-l_no_shadow_file). This is a problem when the first user is
considered as the admin.
- see mail "user ID change" on April, 15
+ fix call to chown (combination of -m and -u/-g)
+ add tests
2007-11-17 21:57:30 +05:30
- passwd:
- check combination of options (e.g. -u/-l)
2009-04-06 05:20:58 +05:30
- when -u refuse to unlock because it would create an empty password, it
should not display "Password changed."
exit instead?
2007-11-17 21:57:30 +05:30
- newgrp: check the USE_PAM section.
2008-10-11 18:45:29 +05:30
- pwck
- Add check to move passwd passwords to shadow if there is a shadow
entry (with a password).
- Add check to move passwd passwords to shadow if there is a shadow
file.
- Support an alternative /etc/tcb directory as second parameter.
- add options -g / -G to specify alternative group / gshadow files
2008-10-11 18:45:29 +05:30
- su
- add a login.defs configuration parameter to add variables to keep in
the environment with "su -l" (TERM/TERMCOLOR/...)
- vipw
2010-03-31 14:57:11 +05:30
- set ACLs and XATTRs on the temporary file (and backups?)
2012-01-16 02:56:56 +05:30
- vipw + selinux -> use lib/selinux.c