On Mon, Mar 05, 2007 at 09:22:10AM -0500, Jarod Wilson wrote: > Axel Thimm wrote: > > On Mon, Mar 05, 2007 at 01:19:57PM +0100, Matthias Saou wrote: > >> Axel Thimm wrote : > >> > >>> FWIW I hate it, too, anyone here around with other feelings for that? > >>> Maybe we're all "that guy" ;) > >> Seems so. A nice clean list of all fixes uids and gids used in Fedora > >> is what I've always wished for. > > > > /usr/share/doc/setup-*/uidgid is supposed to be just that, or not? > > Yes, but only up to uid 100. I remember having a discussion about this > with Jeremy several months ago, and istr him liking the idea of us > creeping into at least the 101-499 space for the hard-coded uidgid list, > but that someone needed to actively push this. One thing that needs > clarification is the (iirc) LSB, with respect to what 101-499 can be > used for. We'd like to maintain LSB compliance, but the guidelines were > a bit hazy in this area, so perhaps pushing the LSB to clarify how that > uid space should be used is the first step to deep-sixing the atrocity > that is fedora-usermgmt (hey, I'm that guy too). Not all space is available for fixed uid/gid. Currently we have 0-99 (or 100? anyway): fixed system uid/gid 100-499: non-fixed system accounts 500-...: user accounts We will still need non-fixed system accounts for the less integrated and less critical uid/gid that packages will want to use. The problem is that the space 100-499 is used by a a few dozen packages which is quite a waste. And the next problem is that when they ask useradd for some random system uid/gid they get it handed from 100 upwards, so the space gets fragmented. Therefore useradd -r should start handing out from 499 downwards so at some point in time we will have the liberty to move the bar between fixed/non-fixed uid/gids higher to say 200 for example. But as long as useradd allocated bottom-to-top we will have more trouble to lift that bar. -- Axel.Thimm at ATrpms.net
Attachment:
pgpOyUtqM7eUW.pgp
Description: PGP signature