Package: tiger
Version: 1:3.2.1-24
/usr/lib/tiger/scripts/check_system reports users that don't have password aging
enabled even if they don't have a password. The checks for password aging are
performed by /usr/lib/tiger/systems/Linux/2/check_passwdspec. The false warning
occurs if there are users that have names which are a substring of the name of
another user. That way "grep $user /etc/passwd" returns more than one line and
confuses the script. The patch below fixes the problem (on my machine).
--- /usr/lib/tiger/systems/Linux/2/check_passwdspec.bak 2006-05-02
03:15:05.000000000 +0200
+++ /usr/lib/tiger/systems/Linux/2/check_passwdspec 2006-05-02
03:15:10.000000000 +0200
@@ -90,7 +90,7 @@ IFS=:
# For expiration, pull the password string from /etc/shadow if it exists
[ -r /etc/shadow ] && {
- pwd=`$GREP $user /etc/shadow | $CUT -d: -f2`
+ pwd=`$GREP ^$user: /etc/shadow | $CUT -d: -f2`
}
# Skip this check if the user account is locked
[ "$pwd" != '!' ] && [ "$pwd" != '*' ] && {
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
