[Freeipa-users] IPA and UIDS <500
Steven Jones
Steven.Jones at vuw.ac.nz
Thu Jul 19 00:53:55 UTC 2012
Actually its pam....unless IPA is as well.
Which makes sense then to have an application run < 500 so inherently it cannot be logged into via ssh....
regards
Steven Jones
Technical Specialist - Linux RHCE
Victoria University, Wellington, NZ
0064 4 463 6272
________________________________________
From: Stephen Gallagher [sgallagh at redhat.com]
Sent: Thursday, 19 July 2012 12:42 p.m.
To: Steven Jones
Cc: freeipa-users at redhat.com
Subject: Re: [Freeipa-users] IPA and UIDS <500
On Thu, 2012-07-19 at 00:02 +0000, Steven Jones wrote:
> Hi,
>
> Is there a rule or something that makes users with a UID of less than
> 500 not work?
Yes, on Red Hat and older Fedora systems, UIDs below 500 are reserved
for system services such as the apache user.
On newer Fedora systems (and most other distributions such as Debian and
Ubuntu), the reserved range has been increased to 1000.
So it's never safe to use an ID below those values. (And as a general
rule, it's best to keep your network IDs above 10,000 to avoid conflicts
with local user accounts as well).
More information about the Freeipa-users
mailing list