Date: Sun, 23 May 2010 02:11:35 +0100 From: RW <rwmaillists@googlemail.com> To: ports@freebsd.org Subject: Re: Users and groups kept after a port deinstallation Message-ID: <20100523021135.7e5dbb4f@gumby.homeunix.com> In-Reply-To: <86aarr8q0m.fsf@gmail.com> References: <AANLkTindTvyrfPRj_cGWUC3LXWI63bGN5azaXo_xYRVu@mail.gmail.com> <AANLkTikNB0LbKG1qtL90F-thxeCvvSqnBxOCCDSucVS6@mail.gmail.com> <20100522005313.26dcfbdb@gumby.homeunix.com> <AANLkTim9NqCGi_iPMuoivw0z2bzEXHkt39VPk6c7aHyt@mail.gmail.com> <4BF787E2.9010907@dataix.net> <20100522120815.063975ae@gumby.homeunix.com> <4BF7C6EE.3010001@dataix.net> <20100522134212.3d5447a8@gumby.homeunix.com> <4BF7FB7D.1010501@dataix.net> <20100522235425.1ab2c504@gumby.homeunix.com> <86aarr8q0m.fsf@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 23 May 2010 03:39:53 +0400 Anonymous <swell.k@gmail.com> wrote: > RW <rwmaillists@googlemail.com> writes: > > > On Sat, 22 May 2010 11:42:53 -0400 > > jhell <jhell@dataix.net> wrote: > >> This is more of a best practices case than what the implications of > >> leaving users in the master.passwd are. > > > > Why is it best practice? Why add extra complexity to solve a problem > > that doesn't actually exist? > > Such unused entries in passwd add clutter. It in turn makes managing > users more complex. You have to remember which users are created by > you and which ones are created by ports. You don't have to remember, just look at the UID/GID values, ordinary users start at 1001, ports create UIDs < 1000. The base system alone creates 18 such users, if you have problems with this kind of thing a few stale uids are the least of your problems. > So, if you change home dir > of some user there may be undesireble consequences. And only then > security becomes a concern because port app may be run with > privilegies that are higher than intended. This appears to refer to an admin confusing a normal user with a system user that's still in use by a port, so I don't see the relevance.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20100523021135.7e5dbb4f>