Re: useradd -r switch

To: Christopher Yeoh <cyeoh@linuxcare.com.au>
Cc: Johannes Poehlmann <jhp@caldera.de>, lsb-spec@lists.linuxbase.org
Subject: Re: useradd -r switch
From: Johannes Poehlmann <jhp@caldera.de>
Date: Wed, 14 Feb 2001 13:18:41 +0100
Message-id: <20010214131841.A2547@caldera.de>
Reply-to: Johannes Poehlmann <jhp@caldera.de>
In-reply-to: <14986.27447.274785.997688@rockhopper.linuxcare.com.au>; from cyeoh@linuxcare.com.au on Wed, Feb 14, 2001 at 10:25:43PM +1100
References: <14986.9649.180304.469721@rockhopper.linuxcare.com.au> <20010214120220.A28315@caldera.de> <14986.27447.274785.997688@rockhopper.linuxcare.com.au>

On Wed, Feb 14, 2001 at 10:25:43PM +1100, Christopher Yeoh wrote:
> A starting point for standardising its behaviour could be this excerpt
> from a man page:
> 
>        -r     This flag is used to create a system account. That is,  an  user
>               with   an   UID   lower   than   value  of  UID_MIN  defined  in
>               /etc/login.defs. Note that useradd will not create a home direc
>               tory  for  such  an  user,  regardless of the default setting in
>               /etc/login.defs.  You have to specify -m option if  you  want  a
>               home  directory  for a system account to be created.  This is an
>               option added by Red Hat.

 Starting point on the LSB meeting in San Francisco was to say: 
 mareks last version of useradd is the standard. So let us stick
 to his upstream version first.

 Should we really standardize the way minimal or maximal UIDs are
 configured? I´d see this that as in the responsability of
 the local sysadmin. 

 But we could ask marek to accept a patch which is searching for 
 configuration values SUID_MIN, SUID_MAX in
 /etc/login.defs for system users, if a -r switch is issued. 
 I will do that if I find the time.

> It probably needs some extra work - eg it doesn't specify what happens
> if all the UID's less than UID_MIN are already taken.

useradd gives up with an error message if the possible UID range is
exhausted. This is good. Useradd could be called by stupid scripts. 

The local sysadmin can override this with the -O switch, so he has
a way to do it. 

BUT: We should FORBID 3rd party software to use the -O switch. If we
fail to do so, 3rd party software can evade whgatever discipline the
local sysadmins wants to set up.
-- 
     ______   ___        
    /  ___/__/  /                 Caldera (Deutschland) GmbH          
   /  /_/ _  / /__        Naegelsbachstr. 49c, 91052 Erlangen, Germany 
  /_____/_/ /____/            software developer / lsb project 
 ==== /____/ =====   Dipl. Inf. Johannes Poehlmann, mail: jhp@caldera.de
Caldera OpenLinux    phone: ++49 9131 7192 335, fax: ++49 9131 7192 399

Reply to:

Follow-Ups:
- Re: useradd -r switch
  - From: Christopher Yeoh <cyeoh@linuxcare.com.au>

References:
- useradd
  - From: Christopher Yeoh <cyeoh@linuxcare.com.au>
- Re: useradd
  - From: Johannes Poehlmann <jhp@caldera.de>
- Re: useradd
  - From: Christopher Yeoh <cyeoh@linuxcare.com.au>

Prev by Date: Re: useradd
Next by Date: Spec Updates
Previous by thread: Re: useradd
Next by thread: Re: useradd -r switch
Index(es):
- Date
- Thread