On Monday 21 of November 2016, @lbutlr wrote:
On Nov 21, 2016, at 7:39 AM, Arkadiusz Miśkiewicz arekm@maven.pl wrote:
reason is the only thing in maillog that allows to distinguish why user was not allowed to log in.
Um… the only thing? How about where you set the reason in the first place?
That "first" place is constantly changing (database) and I'm looking at logs from X days/weeks ago, so database doesn't even have old info.
log it the only place where it would make sense to store a reason.
I think the assumption with nologin is that the admin knows the reason, especially considering that nologin is drastic and is almost certain to confuse the user’s MUA, so should only be used in dire cases.
4 different and dynamically changing reasons possible, so it's not that simple.
-- Arkadiusz Miśkiewicz, arekm / ( maven.pl | pld-linux.org )