Re: [RFC] adding system users: which is the best way??

To: debian-devel@lists.debian.org
Subject: Re: [RFC] adding system users: which is the best way??
From: Russ Allbery <rra@stanford.edu>
Date: Sun, 30 Nov 2003 13:17:41 -0800
Message-id: <[🔎] 87znedd096.fsf@windlord.stanford.edu>
References: <[🔎] Pine.LNX.4.58.0311291701260.15716@trider-g7.ext.fabbione.net> <[🔎] 20031129150546.296959c2.david@eelf.ddts.net> <[🔎] 20031130020735.GW23960@marvin.sbg.palfrader.org> <[🔎] 20031130144222.GA4970@cerberus> <[🔎] 20031130144919.GB14443@marvin.sbg.palfrader.org> <[🔎] 3FCA0B8D.3030705@beamnet.de> <[🔎] 20031130172908.GB15113@molehole.dyndns.org> <[🔎] 87d6b9eg9e.fsf@windlord.stanford.edu>

Russ Allbery <rra@stanford.edu> writes:

> It may be worth considering using the technique that Dan Bernstein
> advocates for these sorts of users, namely pre-pending those names with a
> single capital letter.

> There's a fair bit of discussion about this particular technique and why
> it was chosen at <http://cr.yp.to/unixaccount.html>.

Unfortunately, it looks like I was misremembering, and the discussion that
I was thinking of was in a mailing list post rather than on the web page,
and it doesn't appear to be archived anywhere.

OpenBSD is apparently (per mailing list posts on the web) doing something
similar but using leading underscores instead, as suggested by someone
else in this thread.  That would seem to have similar properties, although
one advantage of the capital letter scheme is that you can have various
types of system accounts easily and distinguish (such as the example of
PPP or SLIP accounts).

Another advantage is that most user addition tools disallow capital
letters by default, which means it's far less likely that a user will
create an account by the same name; this advantage is shared with leading
underscores, but may not necessarily be shared with "debian-" (although
the length will probably dissuade people).

-- 
Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>

Reply to:

Follow-Ups:
- Re: [RFC] adding system users: which is the best way??
  - From: "Milan P. Stanic" <mps@rns-nis.co.yu>

References:
- [RFC] adding system users: which is the best way??
  - From: Fabio Massimo Di Nitto <fabbione@fabbione.net>
- Re: [RFC] adding system users: which is the best way??
  - From: David B Harris <david@eelf.ddts.net>
- Re: [RFC] adding system users: which is the best way??
  - From: Peter Palfrader <weasel@debian.org>
- Re: [RFC] adding system users: which is the best way??
  - From: "Jamin W. Collins" <jcollins@asgardsrealm.net>
- Re: [RFC] adding system users: which is the best way??
  - From: Peter Palfrader <weasel@debian.org>
- Re: [RFC] adding system users: which is the best way??
  - From: Thomas Viehmann <tv@beamnet.de>
- Re: [RFC] adding system users: which is the best way??
  - From: Steve Greenland <steveg@moregruel.net>
- Re: [RFC] adding system users: which is the best way??
  - From: Russ Allbery <rra@stanford.edu>

Prev by Date: Re: ftp.au.debian.org
Next by Date: Re: [RFC] adding system users: which is the best way??
Previous by thread: Re: [RFC] adding system users: which is the best way??
Next by thread: Re: [RFC] adding system users: which is the best way??
Index(es):
- Date
- Thread