25 Oct
2017
25 Oct
'17
12:23 p.m.
On Wed, Oct 25, 2017 at 2:08 PM, Mihai Moldovan <ionic@ionic.de> wrote:
I think there even exists a bugreport for this.
I'm reluctant to allow all-numeric user names because of the ambiguity and the fact that we use the user name later for other stuff (e.g., for executing commands as the user account that started the session.) Assuming, that "the system libraries will get this stuff right" isn't very comforting in this kind of edge case.
Well, Norman's point of "the user is already authenticated at the point where x2go kicks in" is valid. So why check the username at all?
Uli