[Adduser-devel] Bug#472349: Bug#472349: Bug#472349: adduser: please delay more than 5 seconds during deluser root
Joerg Hoh
joerg at joerghoh.de
Wed Mar 26 18:13:36 UTC 2008
On Mon, Mar 24, 2008 at 12:13:57AM +0000, Stephen Gran wrote:
>
> This bug is mostly harmless when deluser is called without a foolish
> flag like --remove-home or worse, --remove-all-files. It is possible,
> of course, to say "no, you can't ever do that", but I do feel a little
> uncomfortable second guessing an admin who wants to do something
> drastically stupid - unix doesn't generally do that.
>
> I agree that the harm caused by allowing people to effectively ask for
> removal of the root account and all files that are uid 0 is stupid, so
> what I propose is: allow removal of a uid 0 account, provided the
> username is not root. Also, fail before doing anything if either of
> --remove-home or --remove-all-files is given. Seem reasonable?
I would suggest to introduce a new parameter "--force"; without this flag
deluser refuses to remove the "root" account, but with this flag, deluser
will print a warning and then remove the account.
Joerg
--
What did you do to the cat? It looks half-dead. -Schroedinger's wife
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/adduser-devel/attachments/20080326/79ae6394/attachment.pgp
More information about the Adduser-devel
mailing list