Quoting Ben Hutchings (ben@decadent.org.uk): > I don't know where you get this 'all possible use cases of the > installer' from. Adding the first user to device access groups only .../... Something like "not default installs" or "non default desktop environments". Indeed, I have no precise idea, just somerthing along "what would be the consequences of dropping these 'default groups' in non default installs". I'm all in for simplifying things and it"s very likely possible that these things are just remains of the past, just as you own tests seem to show. > I've done a quick test of removing myself from the device access groups > on a current GNOME desktop, with these results: > > - audio: redundant, I'm on the ACL for /dev/snd/* > - cdrom: redundant, I'm on the ACL for /dev/sr0 > - floppy: unknown, but expect this to work like cdrom > - video: redundant, I'm on the ACL for /dev/video0 > - plugdev: redundant, I'm on the ACL for /dev/bus/usb/002/006 > - netdev: redundant, I'm on the ACL for /dev/rfkill > - scanner: redundant, I'm on the ACL for /dev/sg2 > - bluetooth: unknown, seems broken whether or not I'm a member of the group > > The other groups (dip, debian-tor, lpadmin, sudo) make more sense, > though CUPS should probably be changed to treat sudo like lpadmin. So, well, are there any objections to us dropping all the above groups from the list of groups the first created user is added to?
Attachment:
signature.asc
Description: PGP signature