Bug#264879: [Pkg-shadow-devel] Bug#264879: passwd: useradd allows invalid characters as username

[Christian Perrier]

> You don't need to sorry in any way. What we need is to
> clarify what should be allowed as username, and what
> shouldn't.
> I think, for example, that uppercase should be allowed.


Well, my current opinion about this is making useradd consistent with
adduser.

adduser is a Debian-specific utility, maintained with compliance with
Debian policy and Debian general uses in mind. So, making useradd
consistent with it seems logical to me.

However, adduser has a "--force-badname" switch to allow "wrong" user
names. I don't know if anything becomes allowed, then.

a "adduser consistence" patch for useradd is a good candidate for a
Debian specific patch, indeed. I don't think we really can drive
Tomasz choices for upstream useradd...but we can just restrict the
authorized user names for Debian's useradd.