Re: daemon user naming scheme

To: Simon McVittie <smcv@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: daemon user naming scheme
From: Ian Jackson <ijackson@chiark.greenend.org.uk>
Date: Fri, 5 Sep 2014 16:03:06 +0100
Message-id: <[🔎] 21513.53418.4646.993382@chiark.greenend.org.uk>
In-reply-to: <53FB8872.7050105@debian.org>
References: <53FB3392.9040506@rezozer.net> <53FB4DE2.9060207@debian.org> <53FB5456.2090303@rezozer.net> <53FB72D0.2050601@rezozer.net> <53FB8872.7050105@debian.org>

Simon McVittie writes ("Re: daemon user naming scheme"):
> It is reasonable to use /var/lib/foo (or /run/foo or /var/cache/foo or
> /var/games/foo) as the home directory of a system user whose name is
> _foo, debian-foo, Debian-foo or whatever.

You need to be careful that the directory chosen never has undesirable
permissions, since there are many ways that access can be granted to a
user foo by putting things in ~foo.

For example, /var/games/foo seems like a bad idea since it will
probably be g+w games.

Ian.

Reply to:

Follow-Ups:
- Re: daemon user naming scheme
  - From: Simon McVittie <smcv@debian.org>
- Re: daemon user naming scheme
  - From: Thorsten Glaser <tg@debian.org>

Prev by Date: Re: systemd, again (Re: Cinnamon environment now available in testing)
Next by Date: Re: daemon user naming scheme
Previous by thread: Re: x32: a success story, and thanks to you all!
Next by thread: Re: daemon user naming scheme
Index(es):
- Date
- Thread