rename fedora-usermgmt?

Axel Thimm Axel.Thimm at ATrpms.net
Mon Mar 5 14:37:38 UTC 2007 

On Mon, Mar 05, 2007 at 09:22:10AM -0500, Jarod Wilson wrote:
> Axel Thimm wrote:
> > On Mon, Mar 05, 2007 at 01:19:57PM +0100, Matthias Saou wrote:
> >> Axel Thimm wrote :
> >>
> >>> FWIW I hate it, too, anyone here around with other feelings for that?
> >>> Maybe we're all "that guy" ;)
> >> Seems so. A nice clean list of all fixes uids and gids used in Fedora
> >> is what I've always wished for.
> > 
> > /usr/share/doc/setup-*/uidgid is supposed to be just that, or not?
> 
> Yes, but only up to uid 100. I remember having a discussion about this
> with Jeremy several months ago, and istr him liking the idea of us
> creeping into at least the 101-499 space for the hard-coded uidgid list,
> but that someone needed to actively push this. One thing that needs
> clarification is the (iirc) LSB, with respect to what 101-499 can be
> used for. We'd like to maintain LSB compliance, but the guidelines were
> a bit hazy in this area, so perhaps pushing the LSB to clarify how that
> uid space should be used is the first step to deep-sixing the atrocity
> that is fedora-usermgmt (hey, I'm that guy too).

Not all space is available for fixed uid/gid. Currently we have

0-99 (or 100? anyway):	   fixed system uid/gid
100-499:		   non-fixed system accounts 
500-...:		   user accounts

We will still need non-fixed system accounts for the less integrated
and less critical uid/gid that packages will want to use.

The problem is that the space 100-499 is used by a a few dozen
packages which is quite a waste. And the next problem is that when
they ask useradd for some random system uid/gid they get it handed
from 100 upwards, so the space gets fragmented.

Therefore useradd -r should start handing out from 499 downwards so at
some point in time we will have the liberty to move the bar between
fixed/non-fixed uid/gids higher to say 200 for example.

But as long as useradd allocated bottom-to-top we will have more
trouble to lift that bar.
-- 
Axel.Thimm at ATrpms.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/epel-devel-list/attachments/20070305/7df4daec/attachment.sig>

More information about the epel-devel-list mailing list