Hi, Matthew Vernon: > Here's a patch to document the 32-bit nature of UIDs, in line with Ben's > suggestion (which seems sound to me). I've added a note to the effect > that useradd won't use the higher-numbered UIDs, which seems sensible as > a) that requires no changes to useradd b) there are some systems you > might want to NIS with which still have 16 bits only. > We might want to explicitly reserve a range (2^31…2^32-2 ?) for (auto-)allocating UID blocks for user namespaces. This way, I could allocate one 2048-or-whatever UID block per container and not be concerned that somebody's random UID matches some random customer's root user. Or be forced to pre-allocate 2048 dummy users so that adduser won't. -- -- Matthias Urlichs
Attachment:
signature.asc
Description: Digital signature