Support shall be enabled with the new --with-acl or --with-attr
configure options.
* Added diagnosis for lock failures.
+ * use libsemanage instead of the semanage tool.
--chgpasswd
+- chage
+ * Add --root option.
+- chfn
+ * Add --root option.
+- chgpasswd
* When the gshadow file exists but there are no gshadow entries, an entry
is created if the password is changed and group requires a
shadow entry.
--chpasswd
+ * Add --root option.
+- chpasswd
* PAM enabled versions: restore the -e option to allow restoring
passwords without knowing those passwords. Restore together the -m
and -c options. (These options were removed in shadow-4.1.4 on PAM
* When the shadow file exists but there are no shadow entries, an entry
is created if the password is changed and passwd requires a
shadow entry.
+ * Add --root option.
+- chsh
+ * Add --root option.
- faillog
* The -l, -m, -r, -t options only act on the existing users, unless -a is
specified.
+ * Add --root option.
+- gpasswd
+ * Add --root option.
+- groupadd
+ * Add --root option.
+- groupdel
+ * Add --root option.
+- groupmems
+ * Fix parsing of gshadow entries.
+ * Add --root option.
- groupmod
* Fixed groupmod when configured with --enable-account-tools-setuid.
* When the gshadow file exists but there are no gshadow entries, an entry
is created if the password is changed and group requires a
shadow entry.
+ * Add --root option.
- grpck
+ * Add --root option.
* NIS entries were dropped by -s (sort).
--login
+- grpconv
+ * Add --root option.
+- grpunconv
+ * Add --root option.
+- lastlog
+ * Add --root option.
+- login
* Fixed limits support (non PAM enabled versions only)
* Added support for infinite limits and group based limits (non PAM
enabled versions only)
than 16 groups.
* Do not log into utmp(x) or wtmp when PAM is enabled. This is done by
pam_lastlog.
-- su
- * Document the su exit values.
- * When su receives a signal, wait for the child to terminate (after
- sending a SIGTERM), and kill it only if it did not terminate by itself.
- No delay will be enforced if the child cooperates.
- * Default ENV_SUPATH is /sbin:/bin:/usr/sbin:/usr/bin
- * Fixed infinite loop when CONSOLE is configured with a colon-separated
- list of TTYs.
- * Fixed warning and support for CONSOLE_GROUPS for users member of more
- than 16 groups.
- * Do not forward the controlling terminal to commands executed with -c.
- This prevents tty hijacking which could lead to execution with the
- caller's privileges.
- * Close PAM sessions as root. This will be more friendly to PAM modules
- like pam_mount or pam_systemd.
- * Added support for PAM modules which change PAM_USER.
-- newgrp, sg, groupmems
+- newgrp, sg
* Fix parsing of gshadow entries.
+- newusers
+ * Add --root option.
+- passwd
+ * Add --root option.
- pwpck
* NIS entries were dropped by -s (sort).
+ * Add --root option.
+- pwconv
+ * Add --root option.
+- pwunconv
+ * Add --root option.
- useradd
* If the skeleton directory contained hardlinked files, copies of the
hardlink were removed from the skeleton directory.
* Do not remove a group with the same name as the user (usergroup) if
this group isn't the user's primary group.
* Add --root option.
+ * Add --selinux-user option.
- usermod
* Accept options in any order (username not necessarily at the end)
* When the shadow file exists but there are no shadow entries, an entry
is created if the password is changed and passwd requires a
shadow entry, or if aging features are used (-e or -f).
* Add --root option.
+- su
+ * Document the su exit values.
+ * When su receives a signal, wait for the child to terminate (after
+ sending a SIGTERM), and kill it only if it did not terminate by itself.
+ No delay will be enforced if the child cooperates.
+ * Default ENV_SUPATH is /sbin:/bin:/usr/sbin:/usr/bin
+ * Fixed infinite loop when CONSOLE is configured with a colon-separated
+ list of TTYs.
+ * Fixed warning and support for CONSOLE_GROUPS for users member of more
+ than 16 groups.
+ * Do not forward the controlling terminal to commands executed with -c.
+ This prevents tty hijacking which could lead to execution with the
+ caller's privileges.
+ * Close PAM sessions as root. This will be more friendly to PAM modules
+ like pam_mount or pam_systemd.
+ * Added support for PAM modules which change PAM_USER.
*** translation
* Updated Brazilian Portuguese translation.
faillog faster.
- gpasswd
* Fix failures when the gshadow file is not present.
- * When a password is moved to the gshadow file, use "x" instead of "x"
+ * When a password is moved to the gshadow file, use "x" instead of "!"
to indicate that the password is shadowed (consistency with grpconv).
* Make sure the group and gshadow files are unlocked on exit.
- groupadd