Comment 1 for bug 2039541

Nice find.

My guess is that the Debian maintainer forgot to include the pam.d configuration file supplied by upstream when this new tool was included:

- https://github.com/shadow-maint/shadow/blob/master/etc/pam.d/groupmems
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=663117

We could decide either to:

- support the tool properly and include the pam.d file
- drop the tool entirely because we've made it this far without anyone noticing, and we made it several decades before someone wrote the tool in the first place
- ignore it entirely because it doesn't seem to be hurting anything as it is

Properly including the tool might bring with it any security problems that it might have. Leaving it alone probably doesn't bring security problems.

In any event we should also file a bug with Debian so they can make a decision, too.

Thanks