See background at https://fedorahosted.org/fesco/ticket/1298#comment:1 and discussion thread here: https://lists.fedoraproject.org/pipermail/devel/2014-April/197712.html In short, securetty doesn't scale well to the modern world of dynamic device files, and actively breaks in containers. Please remove /etc/securetty from the package -- this will reduce confusion (since the normal semantics are that a missing file means nothing is blocked). Thank you!
Ok, based on the thread and discussion, removal in default pam auth modules and util-linux is prerequisite to not break the stuff, right? Can you please add these bugzillas to depends on, so I can track the progress in these?
The related bug is #1090638, but it's not actually a dependency either way, because: * If /etc/securetty is removed but the pam configuration unchanged, the pam module treats that as "allow anything" -- the desired state, but with extra lines in the pam file which aren't doing anything * If the pam configuration is changed but /etc/securetty is still there, it won't work anymore, which may be confusing, but doesn't block anything
Sorry, bug #1090638 (linked!)
Ok, thanks for explanation. Will drop it in next rawhide setup build.
Dropped in setup-2.9.0-1.fc21, closing RAWHIDE.