[lsb-discuss] discussion on bug 1416: PAM tests

Wichmann, Mats D mats.d.wichmann at intel.com
Mon Jun 26 06:17:09 PDT 2006


Bug 1416 notes an interesting issue
(http://bugs.linuxbase.org/show_bug.cgi?id=1416)

On a particlar test system the file "/etc/login.defs" has set 
"PASS_MIN_DAYS 7".

Thus, when the vsxgen users are created, the entry in 
/etc/shadow is created as follows:

vsx0:bC5DIOJ4AdVVs:13315:7:45:7:::

That means the password can be changed only once in 7 days 
by the user, however the tests make multiple changes to
the password in short order.

This is a bit of a grey area as all of the underlying
details of a password / shadow file entry are unspecified.
The behavior of a system with the existence of a login.defs
is also unspecified.  So somehow, the test needs to be
able to account for situations that may occur, and are 
not illegal.  The specification does allow for running
the "passwd -n min" command to set the minimum number of
days before a password may be changed, it seems to me
the test setup ought to invokve this, setting it to an
appropriate value (possibly 0 days) as otherwise there's
an implicit assumption about default conditions.

Thoughts?




More information about the lsb-discuss mailing list