Date: Mon, 3 Mar 2003 03:50:11 -0800 From: David Schultz <das@FreeBSD.ORG> To: "Andrey A. Chernov" <ache@nagual.pp.ru> Cc: src-committers@FreeBSD.ORG, cvs-src@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/lib/libutil login.conf.5 Message-ID: <20030303115011.GA8705@HAL9000.homeunix.com> In-Reply-To: <20030303103819.GA22044@nagual.pp.ru> References: <200303030509.h2359Ofb036507@repoman.freebsd.org> <20030303095422.GA20923@nagual.pp.ru> <20030303101518.GA8214@HAL9000.homeunix.com> <20030303103819.GA22044@nagual.pp.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
Thus spake Andrey A. Chernov <ache@nagual.pp.ru>: > > > LOGIN_CAP library have nothing common with PAM and can be > > > used standalone. > > > > login.conf used to support some facilities that are now supported > > by PAM. This commit removes the stale documentation and leaves a > > pointer to the new documentation for the benefit of people who are > > surprised by the fact that the old functionality has mysteriously > > disappeared. Some day when only the old fogies know what > > 'minpasswordlen' once was, the pointer can go away. > > There is nothing to superceed, there is no old or new functionality. Look > at this simple test case: my application use some documented (and now > removed) knobs from login.conf and NOT use PAM. It sounds like you're upset about the minpassword* features being removed in the first place. In that case, you're complaining to the wrong person; des removed these last April. If you convince him to re-add them, I would be happy to replace the documentation. > Moreover it never hear > about PAM and will be not converted (because PAM is evil, it breaks any > existen auth agressively and I am tired to catch and report all such > cases). libutil is self-contained, there is no PAM withing it and all > direct references are wrong. So none of the documentation is allowed to refer to PAM because you don't like it and you therefore don't want anyone to find it? Look, I'm not going to get into a flamewar about this single sentence: The minpasswordlen and minpasswordcase facilities for enforcing restric- tions on password quality, which used to be supported by login.conf, have been superseded by the pam_passwdqc(8) PAM module. I think it's a pretty good idea. Others don't seem to mind. I would prefer to see feedback from more people before I take any further action. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030303115011.GA8705>