Curt Sampson --> tech-security (2007-03-22 14:42:59 +0900):
> But this seems pretty simple to resolve. Due to the root/toor thing, we
> already have special-case code to deal with a duplicate user account
> (and even a comment saying how you can enable or disable it). Just
> changing the script to ignore a list of "ok duplicate user IDs" pulled
> from a variable in /etc/security.conf, with 1 as the default value,
> would fix this in quite a nice way.

Agreed. I'll implement this if I find enough time.


TIA, Jukka

-- 
bashian roulette:
$ ((RANDOM%6)) || rm -rf ~