From 4b2fc7f59903bae18f686b65d884e390183f7884 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Pierre-Elliott=20B=C3=A9cue?= <becue@crans.org>
Date: Wed, 17 Sep 2014 17:35:50 +0200
Subject: [PATCH] =?UTF-8?q?[pam.d]=20minimum=5Fuid=20=C3=A0=20500.?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 Python/etc/pam.d/common-account  | 2 +-
 Python/etc/pam.d/common-auth     | 2 +-
 Python/etc/pam.d/common-password | 2 +-
 Python/etc/pam.d/common-session  | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/Python/etc/pam.d/common-account b/Python/etc/pam.d/common-account
index ae59939..28c10ce 100644
--- a/Python/etc/pam.d/common-account
+++ b/Python/etc/pam.d/common-account
@@ -34,5 +34,5 @@ else:
     @account required                        pam_permit.so
     @# and here are more per-package modules (the "Additional" block)
     if has("ldap"):
-        print "account        [success=ok new_authtok_reqd=done ignore=ignore user_unknown=ignore authinfo_unavail=ignore default=bad]        %s minimum_uid=1000" % pam_module
+        print "account        [success=ok new_authtok_reqd=done ignore=ignore user_unknown=ignore authinfo_unavail=ignore default=bad]        %s minimum_uid=500" % pam_module
     @# end of pam-auth-update config
diff --git a/Python/etc/pam.d/common-auth b/Python/etc/pam.d/common-auth
index ec6c832..73396c3 100644
--- a/Python/etc/pam.d/common-auth
+++ b/Python/etc/pam.d/common-auth
@@ -26,7 +26,7 @@ else:
     @# here are the per-package modules (the "Primary" block)
     if has('ldap'):
         print "auth   [success=2 default=ignore]      pam_unix.so nullok_secure"
-        print "auth   [success=1 default=ignore]      %s minimum_uid=1000 use_first_pass" % pam_module
+        print "auth   [success=1 default=ignore]      %s minimum_uid=500 use_first_pass" % pam_module
     else:
         print "auth   [success=1 default=ignore]      pam_unix.so nullok_secure"
     @# here's the fallback if no module succeeds
diff --git a/Python/etc/pam.d/common-password b/Python/etc/pam.d/common-password
index c333fea..e69ccf0 100644
--- a/Python/etc/pam.d/common-password
+++ b/Python/etc/pam.d/common-password
@@ -45,7 +45,7 @@ pam-auth-update(8) for details.
 if has('ldap'):
     @password       requisite                       pam_cracklib.so retry=3 minlen=9 dcredit=-1 ucredit=-1 lcredit=-1 ocredit=1 reject_username gecoscheck enforce_for_root difok=0
     @password       [success=2 default=ignore]      pam_unix.so  nullok obscure sha512 min=4 max=8 md5 try_first_pass
-    print "password       [success=1 default=ignore]      %s minimum_uid=1000 ignore_unkown_user md5 try_first_pass" % pam_module
+    print "password       [success=1 default=ignore]      %s minimum_uid=500 ignore_unkown_user md5 try_first_pass" % pam_module
 else:
     @password       [success=1 default=ignore]      pam_unix.so  nullok obscure sha512 min=4 max=8 md5 try_first_pass
 @# here's the fallback if no module succeeds
diff --git a/Python/etc/pam.d/common-session b/Python/etc/pam.d/common-session
index 5bfb6ff..808bafd 100644
--- a/Python/etc/pam.d/common-session
+++ b/Python/etc/pam.d/common-session
@@ -34,5 +34,5 @@ else:
     @# and here are more per-package modules (the "Additional" block)
     @session        required                        pam_unix.so 
     if has('ldap'):
-        print "session        [success=ok default=ignore]     %s minimum_uid=1000" % pam_module
+        print "session        [success=ok default=ignore]     %s minimum_uid=500" % pam_module
     @# end of pam-auth-update config