[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pkg-shadow-devel
Subject:    [Pkg-shadow-devel] Support for creation of system accounts
From:       Nicolas =?iso-8859-1?Q?Fran=E7ois?= <nicolas.francois () centraliens ! net>
Date:       2008-02-11 10:21:15
Message-ID: 20080211102115.GA28082 () nekral ! nekral ! homelinux ! net
[Download RAW message or body]

Hello,

Fedora has a patch to add a -r option to useradd and groupadd, for the
creation of a system account.

System accounts differs from regular accounts:
 * Their ID is not in the same range
   - UID: 1 to UID_MIN - 1
   - GID: 1 to GID_MIN - 1
 * No home directory is created by default
 * Their passwords do not expire

There are also some user/group id policies on Debian, and that option could
be interesting for Debian too. However, it could make more sense to have a
more configurable solution with new variables in login.defs:
  SYS_UID_MIN (defaulting to 1)
  SYS_UID_MAX (defaulting to UID_MAX - 1)
  SYS_GID_MIN (defaulting to 1)
  SYS_GID_MAX (defaulting to GID_MAX - 1)

It would also be interesting to add a -r, --system option to at least
newusers for enforcement of this user/group policy.

I plan to add these variables and the -r, --system options in the next
release.
Does this proposal makes sense?

Best Regards,
-- 
Nekral


[prev in list] [next in list] [prev in thread] [next in thread]