nologin + reason -> logging reason

[Arkadiusz Miśkiewicz]

On Monday 21 of November 2016, @lbutlr wrote:
> On Nov 21, 2016, at 7:39 AM, Arkadiusz Miśkiewicz <arekm at maven.pl> wrote:
> > reason is the only thing in maillog that allows to distinguish why user
> > was not allowed to log in.
> 
> Um… the only thing? How about where you set the reason in the first place?

That "first" place is constantly changing (database) and I'm looking at logs 
from X days/weeks ago, so database doesn't even have old info.

log it the only place where it would make sense to store a reason.

> I think the assumption with nologin is that the admin knows the reason,
> especially considering that nologin is drastic and is almost certain to
> confuse the user’s MUA, so should only be used in dire cases.

4 different and dynamically changing reasons possible, so it's not that 
simple.

-- 
Arkadiusz Miśkiewicz, arekm / ( maven.pl | pld-linux.org )