EU General Data Protection Regulation

If you use a firewall you can block the finger port. Ubuntu comes with iptables by default

Is wrote finger not fingerd!

ftp://ftp.gnu.org/old-gnu/Manuals/finger-1.37/html_chapter/finger_3.html

Disable fingering a specific user by linking /home/foo/.finger control to /bin/true

this config is for fingerd! this has no effect on localhost!

What about uninstalling fínger client / fingerd demon?

for local use there is not fingerd required and finger information should be visible for root and user itself.
what about last?

Disclaimer: This is my personal view to the GDPR matters.

I do not see a reason that GDPR would disallow the use of utilities like finger and last. (Remark: also commands like "who" or "ps ax" can display user names).

"Ubuntu" need not comply to GDPR. Each computer and data service provider has to, and e.g. Canonical Ltd. is subject to the new regulation.

What you have to guarantee as a service provider is that users have agreed to terms of use, and in these terms you can state that their login history etc. could be visible to others.

Or you disable all these commands (either by uninstalling them or by limiting access to specific privileged groups).

Software publisher has to make their software comply to "Privacy by design" und "Privacy by default“.

btw GDPR does not allow to avoid law with terms of use. (Art. 7 GDPR)

 "Privacy by default“: finger is not part of a default Ubuntu installation.

Are you sure? But last, who and ps is there.
As I remember correctly, Windows is restricting those imformation.

This question was expired because it remained in the 'Open' state without activity for the last 15 days.

Very bad support for this problem. I think usage of Linux wil not be possible in EU.

What kind of answer do you expect to receive?

A response of someone, who is in charge, that Ubuntu will comply with this laws at a certain date.

I can only repeat:
It depends on the use of an operating system, whether you are in compliance with the GDPR regulations or not.

By using the best and most secure operating system in the wrong way, you will break the GDPR rules.

Yes. And why do not want Ubuntu to change this few programs to comply to law?

If you can make a proposal how to change the programs in question such that they can ensure GDPR compliance, then please create bug reports.

By the way, I still do not see any problem with finger, last and similar programs, because the information that you get is only the username which is a pseudonym that cannot be attributed to a specific data subject without the use of additional information. (Art. 4 item 5, Art. 6, Art. 25, Art. 32)

On many systems, finger show the real name. And a username is not always a pseudonym. BTW GDPR count a pseudonym as private data, bechause it could like to other data which will show the real user.