From 5b175b34398c5c1be943083e463f28347845924d Mon Sep 17 00:00:00 2001
From: Sam Hartman <hartmans@debian.org>
Date: Wed, 29 Jul 2009 17:01:29 -0400
Subject: Per discussion with Steve, move security note from
 libpam-runtime.config to postinst.

---
 debian/libpam-runtime.postinst | 16 ++++++++++++++--
 1 file changed, 14 insertions(+), 2 deletions(-)

(limited to 'debian/libpam-runtime.postinst')

diff --git a/debian/libpam-runtime.postinst b/debian/libpam-runtime.postinst
index 4903ede8..76a3fc21 100644
--- a/debian/libpam-runtime.postinst
+++ b/debian/libpam-runtime.postinst
@@ -1,9 +1,21 @@
 #!/bin/sh -e
 
-# If the user has removed the config file, respect this sign of dementia
-# -- only create on package install.
 . /usr/share/debconf/confmodule
 
+# pam-auth-update is introduced in 1.0.1-6
+# Between 1.0.1-6 and 1.0.1-10 it is possible to get empty profiles
+if [ "x$2" != "x" ] ;then
+    if dpkg --compare-versions $2 lt 1.0.1-10 && dpkg --compare-versions $2 ge 1.0.1-6 ; then
+	db_get libpam-runtime/profiles
+	if [ "x$ret" = "x" ] ; then
+	    db_input critical libpam-runtime/you-had-no-auth ||true
+	    db_go
+	fi
+    fi
+fi
+
+# If the user has removed the config file, respect this sign of dementia
+# -- only create on package install.
 force=
 if [ -z "$2" ] || dpkg --compare-versions "$2" lt 1.0.1-6
 then
-- 
cgit v1.2.3