Re: Keysafe dynamic UID
Hi!
On Sun, 2016-10-23 at 12:32:30 -0200, Henrique de Moraes Holschuh wrote:
> On Sun, 23 Oct 2016, Guillem Jover wrote:
> > Right now I'm actually considering going over the archive and sending
> > patches to convert Debian-user and debian-user to _user…
> Make it active only for new installs, and you will have bypassed the
> most troublesome issue. Just be *extremely* careful to actually do the
> right thing on removal/purge when the package removes the user (some
> don't, which is arguably MUCH safer), because you must *not* remove the
> legacy user when both exists.
I actually don't think this kind of partial conversion is good,
because it makes the future handling in the package more difficult,
and then we have to support those split-brain states, etc.
Also renaming a user is actually trivial:
usermod -l _something Debian-something
possibly in addition to some directories on the filesystem, or home dir
on the passwd db (which can also be handled with usermod).
Thanks,
Guillem
Reply to: