Usercreation-policy
Enrico Scholz
enrico.scholz at informatik.tu-chemnitz.de
Wed Sep 24 00:45:36 UTC 2003
Hello,
a lot of packages are depending on special users. IMO, there should be
some rules, how users will be created in Fedora Project packages.
In the old Fedora Linux Project (http://fedora.us) I made some
suggestions in
http://www.fedora.us/pipermail/fedora-devel/2003-September/002057.html
Basically, this describes semi-static UIDs which are registered for the
entire Fedora Project. Then, packages would use
| %pre
| /usr/sbin/fedora-useradd 42 -s /bin/false joe
to create an user 'joe' with the relative UID 42. This relative UID
will be added to a system-wide and user-customizable value (taken from
/etc/fedora/usermgmt/baseuid). For details, please see the URL above.
Reasons why not use the static
| /usr/sbin/useradd -u 42 joe
or dynamic
| /usr/sbin/useradd -r joe
are explained in
http://www.fedora.us/wiki/PackageUserCreation
http://www.fedora.us/wiki/PackageDynamicUserCreationConsideredBad
A proof of concept user-database is available at
http://www.fedora.us/wiki/PackageUserRegistry
Thoughts, comments?
Enrico
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 188 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20030924/7c6d1c4f/attachment.sig>
More information about the fedora-devel-list
mailing list