Your message dated Thu, 12 Jan 2012 08:21:41 +0000
with message-id <[email protected]>
and subject line Re: Bug#655547: pam_unix.so needs "nis" option
has caused the Debian Bug report #655547,
regarding pam_unix.so needs "nis" option
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
655547: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=655547
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: nis
Version: 3.17-32
Severity: wishlist
To make passwd work for NIS clients an option "nis" has to be
added to the pam_unix.so line in /etc/pam.d/common-password,
e.g.
password [success=1 default=ignore] pam_unix.so obscure sha512 nis
Without the "nis" option the user gets an error message
% passwd
passwd: Authentication token manipulation error
passwd: password unchanged
%
This is very hard to find. It would be very user friendly and
much less error-prone if the nis postinst script could
automagically modify the pam configuration accordingly.
See #651042
Please reassign if necessary. Many thanx in advance
Harri
--- End Message ---
--- Begin Message ---
On Thu, Jan 12, 2012 at 08:29:16AM +0100, Harald Dunkel wrote:
> This is very hard to find. It would be very user friendly and
> much less error-prone if the nis postinst script could
> automagically modify the pam configuration accordingly.
Automatically editing critical system configuration from the postinst
doesn't seem like a good robustness tradeoff, especially given how
specialist a package NIS is these days. If you're using NIS you
probably know about this stuff already.
--- End Message ---
