On Mon, Mar 05, 2007 at 09:22:10AM -0500, Jarod Wilson wrote:
Axel Thimm wrote:
> On Mon, Mar 05, 2007 at 01:19:57PM +0100, Matthias Saou wrote:
>> Axel Thimm wrote :
>>
>>> FWIW I hate it, too, anyone here around with other feelings for that?
>>> Maybe we're all "that guy" ;)
>> Seems so. A nice clean list of all fixes uids and gids used in Fedora
>> is what I've always wished for.
>
> /usr/share/doc/setup-*/uidgid is supposed to be just that, or not?
Yes, but only up to uid 100. I remember having a discussion about this
with Jeremy several months ago, and istr him liking the idea of us
creeping into at least the 101-499 space for the hard-coded uidgid list,
but that someone needed to actively push this. One thing that needs
clarification is the (iirc) LSB, with respect to what 101-499 can be
used for. We'd like to maintain LSB compliance, but the guidelines were
a bit hazy in this area, so perhaps pushing the LSB to clarify how that
uid space should be used is the first step to deep-sixing the atrocity
that is fedora-usermgmt (hey, I'm that guy too).
Not all space is available for fixed uid/gid. Currently we have
0-99 (or 100? anyway): fixed system uid/gid
100-499: non-fixed system accounts
500-...: user accounts
We will still need non-fixed system accounts for the less integrated
and less critical uid/gid that packages will want to use.
The problem is that the space 100-499 is used by a a few dozen
packages which is quite a waste. And the next problem is that when
they ask useradd for some random system uid/gid they get it handed
from 100 upwards, so the space gets fragmented.
Therefore useradd -r should start handing out from 499 downwards so at
some point in time we will have the liberty to move the bar between
fixed/non-fixed uid/gids higher to say 200 for example.
But as long as useradd allocated bottom-to-top we will have more
trouble to lift that bar.
--
Axel.Thimm at
ATrpms.net