Re: Logs and Permissions for Daemons

To: Anand Kumria <wildfire@progsoc.uts.edu.au>, Joey Hess <joeyh@debian.org>
Cc: Debian Development <debian-devel@lists.debian.org>
Subject: Re: Logs and Permissions for Daemons
From: Ethan Benson <erbenson@alaska.net>
Date: Tue, 16 Nov 1999 20:34:07 -0900
Message-id: <v04210103b457e96343bf@[192.168.0.1]>
In-reply-to: <Pine.LNX.4.20.9911171556450.15884-100000@ftoomsh.progsoc.uts.edu.au>
References: <Pine.LNX.4.20.9911171556450.15884-100000@ftoomsh.progsoc.uts.edu.au>

On 17/11/99 Anand Kumria wrote:

I was under the impression that the uid would be assigned dynamically
at install time. Having that many static uid would be a problem.

I recall reading (somewhere) that we assign uids 500 - 999 for local
sysadmin use. And that we might/will trample on uids 1 - 499
(i.e. they are eserved for the distribution).

all right this thread is bugging me, I am reading in/usr/share/debian-policy version 3.1.0.0


lynx /usr/share/doc/debian-policy/policy.html/index.html

(if you have actually read the Debian policy on this subject you mayignore the following)


section 3.2 Users and Groups:

[...]

0-99:

Globally allocated by the Debian project, must be the same onevery Debian system. These ids will appear in the passwd and groupfiles of all Debian systems, new ids in this range being addedautomatically as the base-passwd package is updated.

Packages which need a single statically allocated uid or gidshould use one of these; their maintainers should ask the base-passwdmaintainer for ids.


100-999:

Dynamically allocated system users and groups. Packages whichneed a user or group, but can have this user or group allocateddynamically and differently on each system, should use `adduser--system' to create the group and/or user. adduser will check for theexistence of the user or group, and if necessary choose an unused idbased on the ranged specified in adduser.conf.


1000-29999:

Dynamically allocated user accounts. By default adduser willchoose UIDs and GIDs for user accounts in this range, thoughadduser.conf may be used to modify this behavior.


30000-59999:
	Reserved.

60000-64999:

Globally allocated by the Debian project, but only created ondemand. The ids are allocated centrally and statically, but theactual accounts are only created on users

 system on demand.

These ids are for packages which are obscure or which require manystatically-allocated ids. These packages should check for and createthe accounts in /etc/passwd or /etc/group (using adduser if it hasthis facility) if necessary. Packages which are likely to requirefurther allocations should have a `hole' left after them in theallocation, to give them room to grow.


65000-65533:
	Reserved.

65534:
	User `nobody.'

65535:
	[...] never use [...]



Best Regards,
Ethan Benson
To obtain my PGP key: http://www.alaska.net/~erbenson/pgp/

Reply to:

References:
- Re: Logs and Permissions for Daemons
  - From: Anand Kumria <wildfire@progsoc.uts.edu.au>

Prev by Date: Re: Logs and Permissions for Daemons
Next by Date: ITP: ZWiki (a zope product)
Previous by thread: Re: Logs and Permissions for Daemons
Next by thread: Re: Logs and Permissions for Daemons
Index(es):
- Date
- Thread