From owner-freebsd-arch@FreeBSD.ORG Tue Jul 4 18:39:03 2006 Return-Path: X-Original-To: freebsd-arch@freebsd.org Delivered-To: freebsd-arch@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0746A16A500; Tue, 4 Jul 2006 18:39:03 +0000 (UTC) (envelope-from jari.aalto@cante.net) Received: from fep32-app.kolumbus.fi (fep32-0.kolumbus.fi [193.229.0.63]) by mx1.FreeBSD.org (Postfix) with ESMTP id D5F2D43D45; Tue, 4 Jul 2006 18:39:01 +0000 (GMT) (envelope-from jari.aalto@cante.net) Received: from bongo.cante.net ([81.197.0.130]) by fep32-app.kolumbus.fi with ESMTP id <20060704183855.UPMF8407.fep32-app.kolumbus.fi@bongo.cante.net>; Tue, 4 Jul 2006 21:38:55 +0300 Received: from fw.cante.net ([192.168.1.3] helo=cante) by bongo.cante.net with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.62) (envelope-from ) id 1Fxpmu-0005Cy-Sz; Tue, 04 Jul 2006 21:38:20 +0300 Received: from jaalto by cante with local (Exim 4.62) (envelope-from ) id 1Fxpms-0003TT-T4; Tue, 04 Jul 2006 21:38:18 +0300 To: Ceri Davies Mail-Copies-To: poster References: <20060509153807.16297.97467.reportbug@cante> <20060620050937.GB18750@djedefre.onera> From: jari.aalto@cante.net (Jari Aalto+mail.linux) Message-Id: Date: Tue, 04 Jul 2006 21:38:18 +0300 Cc: "exim4-daemon-heavy: Use /bin/nologin instead of /bin/false in /etc/passwd" <366546-maintonly@bugs.debian.org>, "pidentd: \[security\] use /bin/nologin instead of /bin/false in /etc/passwd" <366545-maintonly@bugs.debian.org>, "login: please move nologin under /bin directory" <374525@bugs.debian.org>, mstone@debian.org, freebsd-arch@freebsd.org, "openssh-server: \[security\] use /bin/nologin instead of /bin/false" <366541-maintonly@bugs.debian.org>, anibal@debian.org Subject: Re: Bug#366546: Mail delivery failed: returning message to sender X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 04 Jul 2006 18:39:03 -0000 | > > | I think that this suggestion should go to upstream as well. Having | > > | nologin in /bin does not make sense only for Debian, of course. | > > | | | FreeBSD-arch AT FreeBSD.org is better for "move x to y" type discussions. | | > Tomasz (shadow upstream) mentioned me that nologin lies in /sbin in | > OpenBSD so that he's tempted to default installing it there. | > | > As already mentioned elsewhere, I have no strong opinion on this for | > what to do in Debian and I'm ready to listen to suggestions and | > various rationales.... | | We (FreeBSD) have only recently moved it from /sbin to /usr/sbin; see | http://marc.theaimsgroup.com/?l=freebsd-current&m=107755834602236&w=2 | for the discussion we had, if it's of any use. Thanks for the URL. About the /sbin comment 1: "Bloating of the root filesystem". I don't see that to be problem here. I think it would be better to keep things logically separate and resserver /usr for other things. About comment 3: There is no reason for nologin(8) to be in /sbin, since it isn't needed in single-user mode", this has weight. However nologin is a system utility it would be better kept directly under root directory, if /sbin is not ideal, then it should go to /bin -- to same place as "login". Jari