Re: Keysafe dynamic UID

To: Guillem Jover <guillem@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: Keysafe dynamic UID
From: Henrique de Moraes Holschuh <hmh@debian.org>
Date: Sun, 23 Oct 2016 12:32:30 -0200
Message-id: <[🔎] 20161023143230.GA12909@khazad-dum.debian.net>
In-reply-to: <[🔎] 20161023124843.lz33exebfj7yme62@gaara.hadrons.org>
References: <[🔎] 20161022215723.mpnzx6e4vuroziyf@hephaestus.silentflame.com> <[🔎] 87k2d0820c.fsf@luffy.cx> <[🔎] 20161022222640.5wzinu2qk36vxi2g@jwilk.net> <[🔎] E1byGQa-0001zH-TV@swivel.zugschlus.de> <[🔎] 20161023124843.lz33exebfj7yme62@gaara.hadrons.org>

On Sun, 23 Oct 2016, Guillem Jover wrote:
> Right now I'm actually considering going over the archive and sending
> patches to convert Debian-user and debian-user to _user…

Make it active only for new installs, and you will have bypassed the
most troublesome issue.  Just be *extremely* careful to actually do the
right thing on removal/purge when the package removes the user (some
don't, which is arguably MUCH safer), because you must *not* remove the
legacy user when both exists.

-- 
  Henrique Holschuh

Reply to:

Follow-Ups:
- Re: Keysafe dynamic UID
  - From: Guillem Jover <guillem@debian.org>

References:
- Keysafe dynamic UID
  - From: Sean Whitton <spwhitton@spwhitton.name>
- Re: Keysafe dynamic UID
  - From: Vincent Bernat <bernat@debian.org>
- Re: Keysafe dynamic UID
  - From: Jakub Wilk <jwilk@debian.org>
- Re: Keysafe dynamic UID
  - From: Marc Haber <mh+debian-devel@zugschlus.de>
- Re: Keysafe dynamic UID
  - From: Guillem Jover <guillem@debian.org>

Prev by Date: client-side signature checking of Debian archives (Re: When should we https our mirrors?)
Next by Date: Re: Keysafe dynamic UID
Previous by thread: Re: Keysafe dynamic UID
Next by thread: Re: Keysafe dynamic UID
Index(es):
- Date
- Thread