Use <user>:<group> instead of <user>.<group>

Use the newer <user>:<group> notation rather than <user>.<group>, which
is ambiguous for usernames containing periods and deprecated in chown.
Thanks to Kurt Roeckx for identifying instances in the Policy manual.

diff --git a/debian/changelog b/debian/changelog
index bcdab3e15d1de9055ed65ccbaffb440cba477a5a..4d3e8eacd04b96a2537b4f39bba595da09f9ed72 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,5 +1,7 @@
 debian-policy (3.8.0.2) UNRELEASED; urgency=low
 
+  * Use <user>:<group> notation rather than <user>.<group> notation in
+    multiple places.  Thanks, Kurt Roeckx.  (Closes: #488039)
   * Fix typo in 3.8.0.0 upgrading-checklist entry.  Patch from Kobayashi
     Noritada.  (Closes: #487701)
 

diff --git a/policy.sgml b/policy.sgml
index 7c8cfe149ee68799dbd5b3aa3098ffae1e78b985..c9bd84f23d9057d7825af62d195a88cf7866ff46 100644 (file)
--- a/policy.sgml
+++ b/policy.sgml
@@ -5637,7 +5637,7 @@ rmdir /usr/local/share/emacs 2>/dev/null || true
            The <file>/usr/local</file> directory itself and all the
            subdirectories created by the package should (by default) have
            permissions 2775 (group-writable and set-group-id) and be
-           owned by <tt>root.staff</tt>.
+           owned by <tt>root:staff</tt>.
          </p>
        </sect1>
 
@@ -7543,7 +7543,7 @@ endscript
        </p>
 
        <p>
-         Files should be owned by <tt>root.root</tt>, and made
+         Files should be owned by <tt>root:root</tt>, and made
          writable only by the owner and universally readable (and
          executable, if appropriate), that is mode 644 or 755.
        </p>
@@ -8045,7 +8045,7 @@ http://localhost/doc/<var>package</var>/<var>filename</var>
 
        <p>
          Mailboxes are generally mode 660
-         <tt><var>user</var>.mail</tt> unless the system
+         <tt><var>user</var>:mail</tt> unless the system
          administrator has chosen otherwise.  A MUA may remove a
          mailbox (unless it has nonstandard permissions) in which
          case the MTA or another MUA must recreate it if needed.
@@ -8053,7 +8053,7 @@ http://localhost/doc/<var>package</var>/<var>filename</var>
        </p>
 
        <p>
-         The mail spool is 2775 <tt>root.mail</tt>, and MUAs should
+         The mail spool is 2775 <tt>root:mail</tt>, and MUAs should
          be setgid mail to do the locking mentioned above (and
          must obviously avoid accessing other users' mailboxes
          using this privilege).</p>
@@ -8644,8 +8644,8 @@ name ["<var>syshostname</var>"]:
          Games which require protected, privileged access to
          high-score files, saved games, etc., may be made
          set-<em>group</em>-id (mode 2755) and owned by
-         <tt>root.games</tt>, and use files and directories with
-         appropriate permissions (770 <tt>root.games</tt>, for
+         <tt>root:games</tt>, and use files and directories with
+         appropriate permissions (770 <tt>root:games</tt>, for
          example).  They must not be made
          set-<em>user</em>-id, as this causes security problems. (If
          an attacker can subvert any set-user-id game they can