Re: Guidance on solving the username namespacing problem

To: Philipp Kern <pkern@debian.org>, Russ Allbery <rra@debian.org>
Cc: Simon McVittie <smcv@debian.org>, debian-policy@lists.debian.org, pkg-systemd-maintainers@lists.alioth.debian.org, cjwatson@debian.org
Subject: Re: Guidance on solving the username namespacing problem
From: Sean Whitton <spwhitton@spwhitton.name>
Date: Mon, 20 Jan 2020 08:56:18 -0700
Message-id: <[🔎] 87r1zup1el.fsf@iris.silentflame.com>
In-reply-to: <[🔎] efcb929d-ef04-3fe9-4500-6821e382bba7@philkern.de>
References: <[🔎] 20200104160858.GA156731@espresso.pseudorandom.co.uk> <[🔎] ffa3ac37-eb9c-b0e7-d90c-25c02dfd5c79@philkern.de> <[🔎] 87zhf17obi.fsf@hope.eyrie.org> <[🔎] efcb929d-ef04-3fe9-4500-6821e382bba7@philkern.de>

Hello,

On Sun 05 Jan 2020 at 11:33PM +01, Philipp Kern wrote:

> I'd also propose the following hunk as I was myself confused where this
> list was maintained - base-passwd is mentioned in 0-99 but not
> explicitly in the on demand part. As policy seems to defer to that
> package as the list, it would seem like policy should state this explicitly.
>
>> @@ -268,8 +271,10 @@ The UID and GID numbers are divided into classes as follows:
>>
>>  60000-64999:
>>      Globally allocated by the Debian project, but only created on
>> -    demand. The ids are allocated centrally and statically, but the
>> -    actual accounts are only created on users' systems on demand.
>> +    demand. The ids are allocated centrally, but the actual accounts are
>> +    only created on users' systems on demand. Some of them are statically
>> +    allocated. The authoritative allocation for this range is maintained
>> +    in the ``base-passwd`` package.
>>
>>      These ids are for packages which are obscure or which require many
>>      statically-allocated ids. These packages should check for and create

I think it would be good to say what you mean by 'statically allocated'.
This could be done by combining your last two sentences to say that the
UIDs are statically allocated by means of the base-passwd package.

This is purely informative, not normative, so it doesn't need seconding.

> Now there's the question if we need explicit guidance in the UID bit
> about existing packages as well. How would the following sound instead
> of my prior proposal?
>
>> @@ -259,7 +262,9 @@ The UID and GID numbers are divided into classes as follows:
>>      and differently on each system, should use ``adduser --system`` to
>>      create the group and/or user. ``adduser`` will check for the
>>      existence of the user or group, and if necessary choose an unused id
>> -    based on the ranges specified in ``adduser.conf``.
>> +    based on the ranges specified in ``adduser.conf``. New packages
>> +    should follow the guidance of using an underscore prefix for their
>> +    username.
>>
>>  1000-59999:
>>      Dynamically allocated user accounts. By default ``adduser`` will

I believe this should be a bit broader -- packages which are not new but
which are adding new users should also follow the underscore prefix
convention.

-- 
Sean Whitton

Attachment: signature.asc
Description: PGP signature

Reply to:

References:
- Re: Guidance on solving the username namespacing problem
  - From: Simon McVittie <smcv@debian.org>
- Re: Guidance on solving the username namespacing problem
  - From: Philipp Kern <pkern@debian.org>
- Re: Guidance on solving the username namespacing problem
  - From: Russ Allbery <rra@debian.org>
- Re: Guidance on solving the username namespacing problem
  - From: Philipp Kern <pkern@debian.org>

Prev by Date: Bug#949390: Newly created package usernames should begin with an underscore
Next by Date: Processed: limit source to debian-policy, tagging 949390
Previous by thread: Bug#949390: marked as done (Newly created package usernames should begin with an underscore)
Next by thread: Re: Guidance on solving the username namespacing problem
Index(es):
- Date
- Thread