Hello Marc, Chris, Sorry for my late (and possibly pretty lame) reply.
On Tue, Jul 05, 2022 at 03:17:19PM +0200, Marc Haber wrote: > > On Sun, Feb 06, 2022 at 05:09:10PM +0100, Chris Hofstaedtler wrote: > > * Marc Haber <mh+debian-packa...@zugschlus.de> [220206 12:36]: [...] > > > May I ask for you rationale to do things the way you did them for su and > > > pam_keyinit? Your insights might help us to take a wise decision for > > > sudo. > > > > I do not know why this was done for su-l and not su. My speculation > > would be that we have inherited the su-l PAM config from Fedora, and > > the su PAM config from src:shadow before 2018. Maybe the distinction > > is an accident. > > > > Andreas, you worked on the su takeover from src:shadow. Do you have > > insights to share? > > Andreas, did you read this? [...] I have a very bad memory which is why I try to write down as much as possible in bug reports, commit messages, etc to leave hints for my future self. I need to dig to figure things out myself, but I think the above description is basically correct. (If there's any message from me that you have a problem with interpretting what it means, please point me to it and I can try to interpret my own bad grammar to figure out what I tried to write.) Regards, Andreas Henriksson
