Best practices on system users and groups

To: debian-devel@lists.debian.org
Subject: Best practices on system users and groups
From: Javier Fernández-Sanguino Peña <jfs@computer.org>
Date: Mon, 31 Oct 2005 22:03:01 +0100
Message-id: <[🔎] 20051031210301.GA15738@javifsp.no-ip.org>
Mail-followup-to: debian-devel@lists.debian.org

After the feedback of the recent d-d thread, I've adapted the section I wrote
on the best practices related to system users and groups, it is currently
available at:
http://www.debian.org/doc/manuals/developers-reference/ch-best-pkging-practices.en.html#s-bpp-lower-privs

I would like developers to review and provide feedback for that section,
specially in form of patches. I'm considering doing a bug hunt for:

a) packages that should create a system user for their normal operation and
do not

b) packages that use a system user but do not do handle it properly (for
example, they unconditionally delete the user without checking if the
package, and not the admin, actually created it)

Thoughts?

Javier

Attachment: signature.asc
Description: Digital signature

Reply to:

Prev by Date: Re: Dummy packages and metapackages (call for consistency in the descriptions)
Next by Date: Re: Transition time: KDE, JACK, arts, sablotron, unixodbc, net-snmp, php, ...
Previous by thread: Clarification of NMU policy
Next by thread: /usr/lib/debug/usr/lib etc. in various packages [bug 336698]
Index(es):
- Date
- Thread