Module Name:	src
Committed By:	jhawk
Date:		Thu Feb 13 01:55:10 UTC 2003

Modified Files:
	src/etc: security
	src/etc/defaults: security.conf

Log Message:
Add some flexibility to /etc/security, by way of security.conf options:
  check_passwd_nowarn_shells	Don't warn about these non-/etc/shells shells
  check_passwd_nowarn_users	Don't warn about these users
  check_passwd_permit_star	Don't warn about "*" in the $2 field
Behavior change: check_passwd_nowarn_shells defaults to /sbin/nologin and
  /usr/libexec/uucp/uucico, so that it will not warn about the default
  master.passwd.
The rationale here is that an administrator who chooses to permit these
  warnable conditions should not be warned about them day after day, yet
  should not be forced to disable check_passwd entirely.
check_passwd_permit_star is primarily of interest to sites who use *'d
  entries for Kerberos or ssh logins, despite the fact that we permit
  "*ssh" (etc.) for this purpose (legacy).


To generate a diff of this commit:
cvs rdiff -r1.80 -r1.81 src/etc/security
cvs rdiff -r1.8 -r1.9 src/etc/defaults/security.conf

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.