severity 539163 normal thanks I think this isn't serious. While it's possible that someone might select a auth-less list, that could potentially be what they _want_ for their crazy system. On the other hand, if it was an accident, some notice should be taken. But I see this more as a feature request than anything else.
Further protecting a user who is already customizing their PAM stack is a good idea and nice to have, but shouldn't cause PAM to have an RC bug for it. -Kees -- Kees Cook @debian.org -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
