[Tiger-devel] [PATCH] check_passwd patch.

[rbradetich]

Hello all,

Javier has suggested that I continue to patch bomb this list while he is busy 
elsewhere, so here goes :)

Here is the second patch for re-organizing the check_account and check_password 
modules.

The list of outstanding checks still dropped from the check_account are:
        - Comment in the passwod file (Not used) -- Do we still want this 
check?  if so, I think it belongs in the check_passwdformat module.
        - Malformed password entry -- Planning on moving this to the 
check_passwordformat module.
        - password aging check -- I am planning on moving this to a system 
check module because the format of chage (under Linux) and pwage under HP-UX 
are completely different.  I suspect the format is different for each system, 
anyone know of other formats?


This patch does the following:
  * Reformat and optimize some checks (replace several awk statements with
    a single pass through the password file).

  * Updated documentation to match the changes to check_account and 
    check_password.

  * Changed the Administrative Login ID with impossible password to a failure
    instead of a warning.

  * Added the following checks from check_account:
    - Login ID is disabled, but still has a valid shell (acc001w)
    - Login does not have a valid shell (acc020w)
    - UID has / for home directory (acc014f)
    - Login ID is UID-0 (acc012w)
    - Administrative Login ID should have impossible password (acc018w)

  * Merged these duplicate checks from check_account:
    - empty password check (acc010a, acc011w)
    - duplicate home directory check (acc015w)

Thanks

- Ryan

check_passwd.patch
Description: Text document