Re: Bits from the release team: the plans for etch

To: Marc Haber <mh+debian-devel@zugschlus.de>
Cc: debian-devel@lists.debian.org
Subject: Re: Bits from the release team: the plans for etch
From: Gabor Gombas <gombasg@sztaki.hu>
Date: Mon, 24 Oct 2005 13:29:51 +0200
Message-id: <[🔎] 20051024112939.GJ18631@boogie.lpds.sztaki.hu>
In-reply-to: <[🔎] E1ETxPb-0002jT-DD@scyw00225.scy001.de>
References: <20051014070217.GA6356@tennyson.dodds.net> <[🔎] 87d5m09m5s.fsf@glaurung.internal.golden-gryphon.com> <[🔎] 20051021050529.GG1325@djedefre.onera> <[🔎] 8764rr8idz.fsf@glaurung.internal.golden-gryphon.com> <[🔎] 20051021160921.GJ32190@djedefre.onera> <[🔎] 20051021211923.GA25779@tennyson.dodds.net> <[🔎] 20051022082324.GC24450@saruman.uio.no> <[🔎] E1ETva4-0005iY-MW@scyw00225.scy001.de> <[🔎] 20051024062244.GQ24450@saruman.uio.no> <[🔎] E1ETxPb-0002jT-DD@scyw00225.scy001.de>

On Mon, Oct 24, 2005 at 10:10:31AM +0200, Marc Haber wrote:

> And where do system accounts generated by packages on installations go
> to? adduser's interaction with LDAP and NIS is abysmally bad, and
> nobody seems to care.

It is a very bad idea to add system accounts to LDAP/NIS automatically
unless you can come up a way to guarantee that those accounts do not
already exist locally on any other clients using the same LDAP/NIS
server.

If you want to include multiple OSes/distros in the same LDAP/NIS setup
then it is a very-very bad idea to add system accounts/groups to
LDAP/NIS unless you can make absolutely sure that those other
OSes/distros handle those accounts the same way as Debian. I'd really
recommend writing a detailed local account management policy before even
thinking about adding system users/groups to LDAP/NIS. It is definitely
_not_ trivial.

Gabor

-- 
     ---------------------------------------------------------
     MTA SZTAKI Computer and Automation Research Institute
                Hungarian Academy of Sciences
     ---------------------------------------------------------

Reply to:

References:
- Re: Bits from the release team: the plans for etch
  - From: Manoj Srivastava <srivasta@debian.org (va, manoj)>
- Re: Bits from the release team: the plans for etch
  - From: Christian Perrier <bubulle@debian.org>
- Re: Bits from the release team: the plans for etch
  - From: Manoj Srivastava <srivasta@debian.org (va, manoj)>
- Re: Bits from the release team: the plans for etch
  - From: Christian Perrier <bubulle@debian.org>
- Re: Bits from the release team: the plans for etch
  - From: Steve Langasek <vorlon@debian.org>
- Re: Bits from the release team: the plans for etch
  - From: Petter Reinholdtsen <pere@hungry.com>
- Re: Bits from the release team: the plans for etch
  - From: Marc Haber <mh+debian-devel@zugschlus.de>
- Re: Bits from the release team: the plans for etch
  - From: Petter Reinholdtsen <pere@hungry.com>
- Re: Bits from the release team: the plans for etch
  - From: Marc Haber <mh+debian-devel@zugschlus.de>

Prev by Date: Re: Bits from the release team: the plans for etch
Next by Date: Re: Dependencies of -dev packages
Previous by thread: Re: Bits from the release team: the plans for etch
Next by thread: Re: Bits from the release team: the plans for etch
Index(es):
- Date
- Thread