summaryrefslogtreecommitdiff
path: root/src/conf_mode/nat.py
diff options
context:
space:
mode:
authorChristian Breunig <christian@breunig.cc>2023-10-04 16:45:13 +0200
committerMergify <37929162+mergify[bot]@users.noreply.github.com>2023-10-04 18:58:21 +0000
commit7498c30ef56b9727c037c5c79ec82507dd792d82 (patch)
tree9e2449f9bf5a16f0e520b73c5839f8844490f29f /src/conf_mode/nat.py
parent11d1b3f233bebfdf4f4749b3be5f69d52b0f01f8 (diff)
downloadvyos-1x-7498c30ef56b9727c037c5c79ec82507dd792d82.tar.gz
vyos-1x-7498c30ef56b9727c037c5c79ec82507dd792d82.zip
login: T5521: do not call system-login.py in vyos-router init
Calling system-login.py with no mounted VyOS config has the negative effect that the script will not detect any local useraccounts and thus assumes they all need to be removed from the password backend. As soon as the VyOS configuration is mounted and the CLI content is processed, system-login.py get's invoked and re-creates the before deleted user accounts. As the account names are sorted in alphabetical order, the name <-> UID mapping can get mixed up during system reboot. The intention behind calling system-login.py from vyos-router init was to reset system services (PAM, NSS) back to sane defaults with the defaults provided via system-login.py. As PAM is already reset in vyos-router startup script, /etc/nsswitch.conf was the only candidate left. This is now accomplished by simply creating a standard NSS configuration file tailored for local system accounts. This is the second revision after the first change via commit 64d32329958 ("login: T5521: home directory owner changed during reboot") got reverted. (cherry picked from commit 12069d5653034b46a47430353c3867b3678c196f)
Diffstat (limited to 'src/conf_mode/nat.py')
0 files changed, 0 insertions, 0 deletions