Re: Keysafe dynamic UID

To: debian-devel@lists.debian.org
Subject: Re: Keysafe dynamic UID
From: Guillem Jover <guillem@debian.org>
Date: Sun, 23 Oct 2016 16:59:20 +0200
Message-id: <[🔎] 20161023145920.63tpek5fnzpiyobk@gaara.hadrons.org>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20161023143230.GA12909@khazad-dum.debian.net>
References: <[🔎] 20161022215723.mpnzx6e4vuroziyf@hephaestus.silentflame.com> <[🔎] 87k2d0820c.fsf@luffy.cx> <[🔎] 20161022222640.5wzinu2qk36vxi2g@jwilk.net> <[🔎] E1byGQa-0001zH-TV@swivel.zugschlus.de> <[🔎] 20161023124843.lz33exebfj7yme62@gaara.hadrons.org> <[🔎] 20161023143230.GA12909@khazad-dum.debian.net>

Hi!

On Sun, 2016-10-23 at 12:32:30 -0200, Henrique de Moraes Holschuh wrote:
> On Sun, 23 Oct 2016, Guillem Jover wrote:
> > Right now I'm actually considering going over the archive and sending
> > patches to convert Debian-user and debian-user to _user…

> Make it active only for new installs, and you will have bypassed the
> most troublesome issue.  Just be *extremely* careful to actually do the
> right thing on removal/purge when the package removes the user (some
> don't, which is arguably MUCH safer), because you must *not* remove the
> legacy user when both exists.

I actually don't think this kind of partial conversion is good,
because it makes the future handling in the package more difficult,
and then we have to support those split-brain states, etc.

Also renaming a user is actually trivial:

  usermod -l _something Debian-something

possibly in addition to some directories on the filesystem, or home dir
on the passwd db (which can also be handled with usermod).

Thanks,
Guillem

Reply to:

Follow-Ups:
- RE:Keysafe dynamic UID
  - From: PICCA Frederic-Emmanuel <frederic-emmanuel.picca@synchrotron-soleil.fr>
- Re: Keysafe dynamic UID
  - From: Anthony DeRobertis <anthony@derobert.net>

References:
- Keysafe dynamic UID
  - From: Sean Whitton <spwhitton@spwhitton.name>
- Re: Keysafe dynamic UID
  - From: Vincent Bernat <bernat@debian.org>
- Re: Keysafe dynamic UID
  - From: Jakub Wilk <jwilk@debian.org>
- Re: Keysafe dynamic UID
  - From: Marc Haber <mh+debian-devel@zugschlus.de>
- Re: Keysafe dynamic UID
  - From: Guillem Jover <guillem@debian.org>
- Re: Keysafe dynamic UID
  - From: Henrique de Moraes Holschuh <hmh@debian.org>

Prev by Date: Re: Keysafe dynamic UID
Next by Date: Bug#841825: ITP: golang-github-stacktic-dropbox -- Go client library for the Dropbox core and Datastore API
Previous by thread: Re: Keysafe dynamic UID
Next by thread: RE:Keysafe dynamic UID
Index(es):
- Date
- Thread