| Summary: | accountservice sets users as system users when login shell is empty | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 7 | Reporter: | Oliver Ilian <oliver> |
| Component: | accountsservice | Assignee: | Ray Strode [halfline] <rstrode> |
| Status: | CLOSED UPSTREAM | QA Contact: | Desktop QE <desktop-qa-list> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 7.3 | CC: | jkoten, jreimann, tpelka |
| Target Milestone: | rc | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2019-02-20 21:07:33 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
|
Description
Oliver Ilian
2016-11-09 11:32:21 UTC
maybe. I do wonder if some system services will start showing up as normal user accounts if we do this. mmhhh.. good point. Maybe System user/Accounts should be (if not other needed) set to loginShell as /sbin/nologin (or /bin/false)? looks like the login command does this:
→ if (pwd->pw_shell == NULL || *pwd->pw_shell == '\0')•
→ → pwd->pw_shell = _PATH_BSHELL;•
where _PATH_BSHELL is libc defined default bourne shell ("/bin/sh").
perhaps accountsservice should use the same logic.
i've filed https://gitlab.freedesktop.org/accountsservice/accountsservice/issues/69 for now. I think we should deal with this upstream, and potentially backport the change down the road (maybe just in rhel8 following a rebase?). Closing, but if you were really hoping to see this land in rhel 7 on a more accelerated schedule, please reopen. |