[CentOS] Changing a user's shell on CentOS Directory Server?

Tue Jun 2 10:08:49 UTC 2009
Ralph Angenendt <ra+centos at br-online.de>

Matt Harrington wrote:
> Should unprivileged users be able to change their shell with lchsh on
> 5.3 and, if it matters, CentOS Directory Server?  lchsh seems to
> require more open permissions than those which come with a default
> installation:
> 
>      Error initializing libuser: could not open configuration file
> `/etc/default/useradd': Permission denied.

lchsh and lchfn aren't setuid root on CentOS/RHEL systems, so they
cannot open this file. I have no idea if this is intentional, a
discussion on upstream's bugzilla -
<https://bugzilla.redhat.com/show_bug.cgi?id=125611> - advises against
that.

You should open a bug on bugzilla.redhat.com against either libuser
(where lchsh comes from) or against shadow-utils to make the useradd
file readable for others at least.

It would be nice if you could tell us the bugzilla ID here, then.

Cheers,

Ralph
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos/attachments/20090602/2e40d7c1/attachment-0005.sig>