From e8f31f5bc3a9f852d5c67a7b9c02bf99581ebf48 Mon Sep 17 00:00:00 2001
From: Russ Allbery <rra@debian.org>
Date: Wed, 25 Jun 2008 14:50:45 -0700
Subject: [PATCH] Use <user>:<group> instead of <user>.<group>

Use the newer <user>:<group> notation rather than <user>.<group>, which
is ambiguous for usernames containing periods and deprecated in chown.
Thanks to Kurt Roeckx for identifying instances in the Policy manual.
---
 debian/changelog |  2 ++
 policy.sgml      | 12 ++++++------
 2 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index bcdab3e..4d3e8ea 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,5 +1,7 @@
 debian-policy (3.8.0.2) UNRELEASED; urgency=low
 
+  * Use <user>:<group> notation rather than <user>.<group> notation in
+    multiple places.  Thanks, Kurt Roeckx.  (Closes: #488039)
   * Fix typo in 3.8.0.0 upgrading-checklist entry.  Patch from Kobayashi
     Noritada.  (Closes: #487701)
 
diff --git a/policy.sgml b/policy.sgml
index 7c8cfe1..c9bd84f 100644
--- a/policy.sgml
+++ b/policy.sgml
@@ -5637,7 +5637,7 @@ rmdir /usr/local/share/emacs 2>/dev/null || true
 	    The <file>/usr/local</file> directory itself and all the
 	    subdirectories created by the package should (by default) have
 	    permissions 2775 (group-writable and set-group-id) and be
-	    owned by <tt>root.staff</tt>.
+	    owned by <tt>root:staff</tt>.
 	  </p>
 	</sect1>
 
@@ -7543,7 +7543,7 @@ endscript
 	</p>
 
 	<p>
-	  Files should be owned by <tt>root.root</tt>, and made
+	  Files should be owned by <tt>root:root</tt>, and made
 	  writable only by the owner and universally readable (and
 	  executable, if appropriate), that is mode 644 or 755.
 	</p>
@@ -8045,7 +8045,7 @@ http://localhost/doc/<var>package</var>/<var>filename</var>
 
 	<p>
 	  Mailboxes are generally mode 660
-	  <tt><var>user</var>.mail</tt> unless the system
+	  <tt><var>user</var>:mail</tt> unless the system
 	  administrator has chosen otherwise.  A MUA may remove a
 	  mailbox (unless it has nonstandard permissions) in which
 	  case the MTA or another MUA must recreate it if needed.
@@ -8053,7 +8053,7 @@ http://localhost/doc/<var>package</var>/<var>filename</var>
 	</p>
 
 	<p>
-	  The mail spool is 2775 <tt>root.mail</tt>, and MUAs should
+	  The mail spool is 2775 <tt>root:mail</tt>, and MUAs should
 	  be setgid mail to do the locking mentioned above (and
 	  must obviously avoid accessing other users' mailboxes
 	  using this privilege).</p>
@@ -8644,8 +8644,8 @@ name ["<var>syshostname</var>"]:
 	  Games which require protected, privileged access to
 	  high-score files, saved games, etc., may be made
 	  set-<em>group</em>-id (mode 2755) and owned by
-	  <tt>root.games</tt>, and use files and directories with
-	  appropriate permissions (770 <tt>root.games</tt>, for
+	  <tt>root:games</tt>, and use files and directories with
+	  appropriate permissions (770 <tt>root:games</tt>, for
 	  example).  They must not be made
 	  set-<em>user</em>-id, as this causes security problems. (If
 	  an attacker can subvert any set-user-id game they can
-- 
2.39.2