Re: passwd entry for uid -1

To: debian-hurd@lists.debian.org
Subject: Re: passwd entry for uid -1
From: Robert Bihlmeyer <robbe@orcus.priv.at>
Date: 05 Jun 2001 16:27:21 +0200
Message-id: <[🔎] 87y9r7knna.fsf@orcus.priv.at>
In-reply-to: Marcus Brinkmann's message of "Mon, 4 Jun 2001 21:50:26 +0200"
References: <[🔎] 20010602214206.BF65699306@perdition.linnaean.org> <[🔎] 20010603205104.D4223@212.23.136.22> <[🔎] 87wv6s5pj4.fsf@orcus.priv.at> <[🔎] 20010604215026.D1366@212.23.136.22>

Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de> writes:

> Right, and I think it is a good idea to not dynamically create this entry
> either, as the uid must not change anyway.

Yup, no "adduser" involved, no problem.

> > BTW, what's the difference to Unix's nobody?
> 
> Nobody is just another user, though usually with special semantics.

Hmm, all the security punduits continously preach that "nobody" was
only meant as a no-rights-at-all target to map root to in NFS.
"nobody" actually owning stuff is a big no-no. So I count that not as
just another user. I'd actually wager that "nobody" was in fact an
attempt to emulate the concept of an empty id set (or empty capability
set) in Unix semantics.

If that's correct, unifying them may be good. May be I'm missing
something, though.

-- 
Robbe

Attachment: signature.ng
Description: PGP signature

Reply to:

Follow-Ups:
- Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>

References:
- Re: passwd entry for uid -1
  - From: Roland McGrath <roland@frob.com>
- Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: passwd entry for uid -1
  - From: Robert Bihlmeyer <robbe@orcus.priv.at>
- Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>

Prev by Date: Re: and now ?
Next by Date: Easy Guide feedback
Previous by thread: Re: passwd entry for uid -1
Next by thread: Re: passwd entry for uid -1
Index(es):
- Date
- Thread