Re: UPG and the default umask

To: debian-devel@lists.debian.org, debian-policy@lists.debian.org
Subject: Re: UPG and the default umask
From: Russ Allbery <rra@debian.org>
Date: Thu, 20 May 2010 10:30:59 -0700
Message-id: <[🔎] 877hmyiip8.fsf@windlord.stanford.edu>
In-reply-to: <[🔎] 20100520144721.GG16213@codelibre.net> (Roger Leigh's message of "Thu, 20 May 2010 15:47:21 +0100")
References: <[🔎] 84d3wvj7e5.fsf@sauna.l.org> <[🔎] alpine.DEB.1.10.1005171419450.12903@kolmogorov.unex.es> <[🔎] 844oi6k7x6.fsf@sauna.l.org> <[🔎] alpine.DEB.1.10.1005191903510.17907@cantor.unex.es> <[🔎] 4BF437F2.2090802@codelibre.net> <[🔎] alpine.DEB.1.10.1005200006430.8356@kolmogorov.unex.es> <[🔎] 4BF472B4.5090606@codelibre.net> <[🔎] alpine.DEB.1.10.1005201121130.18348@kolmogorov.unex.es> <[🔎] 20100520100849.GC8057@rivendell> <[🔎] alpine.DEB.1.10.1005201408240.21953@kolmogorov.unex.es> <[🔎] 20100520144721.GG16213@codelibre.net>

Roger Leigh <rleigh@codelibre.net> writes:

> If all current Debian systems support a 32-bit UID and GID range, then
> it would be great if we could amend Policy to move the reserved ranges
> to the end of the 32-bit range rather than being at the end of the
> 16-bit range.  This would give a vast contiguous user range (4294931294
> UIDs using the scheme below)

You can't move the static reserved space: it contains statically assigned
UIDs.  :)  That's the whole point of it.  We could change where we're
assigning future static UIDs and GIDs from, but I'm not sure it's worth
the effort given that there's always going to have to be a legacy reserved
space for the ones that were already assigned.

> Additionally, user nobody would then be in the middle of the user
> range; it could be shifted back to the end of the 32-bit range.

I don't think it's a good idea to let people assign 65535 to a regular
user.  That's been hardcoded as nobody in a vast number of UNIX systems
for decades.  Reusing that UID for other purposes in any sort of shared
infrastructure is almost certain to cause problems.

-- 
Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>

Reply to:

Follow-Ups:
- Re: UPG and the default umask
  - From: Roger Leigh <rleigh@codelibre.net>

References:
- Re: UPG and the default umask
  - From: Timo Juhani Lindfors <timo.lindfors@iki.fi>
- Re: UPG and the default umask
  - From: Santiago Vila <sanvila@unex.es>
- Re: UPG and the default umask
  - From: Timo Juhani Lindfors <timo.lindfors@iki.fi>
- Re: UPG and the default umask
  - From: Santiago Vila <sanvila@unex.es>
- Re: UPG and the default umask
  - From: Roger Leigh <rleigh@codelibre.net>
- Re: UPG and the default umask
  - From: Santiago Vila <sanvila@unex.es>
- Re: UPG and the default umask
  - From: Roger Leigh <rleigh@codelibre.net>
- Re: UPG and the default umask
  - From: Santiago Vila <sanvila@unex.es>
- Re: UPG and the default umask
  - From: Raphael Hertzog <hertzog@debian.org>
- Re: UPG and the default umask
  - From: Santiago Vila <sanvila@unex.es>
- Re: UPG and the default umask
  - From: Roger Leigh <rleigh@codelibre.net>

Prev by Date: Bug#582420: ITP: libpod-elemental-perlmunger-perl -- Perl module that rewrites Perl documentation
Next by Date: Who owns /var/log/lighttpd?
Previous by thread: Re: UPG and the default umask
Next by thread: Re: UPG and the default umask
Index(es):
- Date
- Thread