[Freeipa-users] ipausers default group
Robert Marcano
robert at marcanoonline.com
Tue Nov 18 00:33:58 UTC 2008
Is a good idea that "ipausers" group be the default primary group for
all users? i see everyday applications that create temporary files that
does not follows the 0600 file permissions.
All RedHat/Fedora tools create a user and a group by default, unless you
request a different primary group.
Just one example:
http://java.sun.com/j2se/1.3/docs/api/java/io/File.html#createTempFile(java.lang.String,%20java.lang.String)
the Java method to generate temporary files does not create them with
permissions 0600 (there is no way to change that in plain Java).
Creating a group by hand for each user is repetitive and there is no way
to assign them easily, you need to copy the GID and copy it to the user
by hand
More information about the Freeipa-users
mailing list