Matt Harrington wrote:
Should unprivileged users be able to change their shell with lchsh on 5.3 and, if it matters, CentOS Directory Server? lchsh seems to require more open permissions than those which come with a default installation:
Error initializing libuser: could not open configuration file`/etc/default/useradd': Permission denied.
lchsh and lchfn aren't setuid root on CentOS/RHEL systems, so they cannot open this file. I have no idea if this is intentional, a discussion on upstream's bugzilla - https://bugzilla.redhat.com/show_bug.cgi?id=125611 - advises against that.
You should open a bug on bugzilla.redhat.com against either libuser (where lchsh comes from) or against shadow-utils to make the useradd file readable for others at least.
It would be nice if you could tell us the bugzilla ID here, then.
Cheers,
Ralph