Hello,
On Sat, Jun 28, 2008 at 09:09:15PM +0200, [email protected] wrote:
>
> In short, my proposal is to modify the login postinst script to create
> /var/log/faillog only on initial install (performed by d-i and
> debootstrap), and not on subsequent upgrades. Please read on to
> understand why this solution, or any other one, is needed.
Would this patch be sufficient for your needs?
Best Regards,
--
Nekral
Index: debian/login.postinst
===================================================================
--- debian/login.postinst (révision 2909)
+++ debian/login.postinst (copie de travail)
@@ -14,11 +14,15 @@
fi
rm -f /etc/pam.d/login.pre-upgrade 2>/dev/null
+if [ "$1" = "configure" ] && [ "$2" = "" ]
+then
+ # Install faillog during initial installs only
if [ ! -f /var/log/faillog ] ; then
touch /var/log/faillog
chown root:root /var/log/faillog
chmod 644 /var/log/faillog
fi
+fi
#DEBHELPER#
Index: debian/changelog
===================================================================
--- debian/changelog (révision 2915)
+++ debian/changelog (copie de travail)
@@ -3,8 +3,11 @@
* The "Banon" release.
* debian/rules, debian/passwd.linda-overrides, debian/login.linda-overrides:
Removed linda-overrides files.
+ * debian/login.postinst: Install /var/log/faillog during initial installs
+ only. This permits admins to disable failed logins recording.
+ Closes: #488420
- -- Nicolas FRANCOIS (Nekral) <[email protected]> Mon, 11 May 2009 22:29:12 +0200
+ -- Nicolas FRANCOIS (Nekral) <[email protected]> Mon, 11 May 2009 22:39:07 +0200
shadow (1:4.1.4-1) unstable; urgency=low
