Fedora User Management (revisited)
Enrico Scholz
enrico.scholz at informatik.tu-chemnitz.de
Sat Mar 10 11:19:08 UTC 2007
Axel Thimm <Axel.Thimm at ATrpms.net> writes:
>> > Indeed, most of the packages we're talking about (if not all) don't
>> > need a fixed uid/gid at all.
>>
>> When a package/daemon writes files and/or reads files which are protected
>> by file permissions, it is a good candidate for fixed uids.
>
> Don't userdel the user.
??? When I install a package on machine A and machine B, I do not use
'userdel' overall.
> Check out httpd, a prominent package which can have sensitive data
> underneath its user.
'httpd' has the comfort to have a really fixed uid < 100...
Enrico
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 480 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-maintainers/attachments/20070310/f081c1b8/attachment.sig>
More information about the Fedora-maintainers
mailing list