From owner-freebsd-ports@FreeBSD.ORG Sat May 22 15:42:57 2010 Return-Path: Delivered-To: ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0A20E106566C for ; Sat, 22 May 2010 15:42:57 +0000 (UTC) (envelope-from jhellenthal@gmail.com) Received: from mail-gw0-f54.google.com (mail-gw0-f54.google.com [74.125.83.54]) by mx1.freebsd.org (Postfix) with ESMTP id ADC2D8FC12 for ; Sat, 22 May 2010 15:42:56 +0000 (UTC) Received: by gwj18 with SMTP id 18so77183gwj.13 for ; Sat, 22 May 2010 08:42:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:sender:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :x-enigmail-version:openpgp:content-type:content-transfer-encoding; bh=Gz2WV/wM38t+vuOvYpzbo7pEpqGEdWDbBfyNm5RO6S4=; b=CeVcW/MFUA8rJErN3nxlFlPboOxGxbgGIf900f+yO3NI2Yz8cSw/zBYURhVZh++R9q QLzCWGfIspTotXW1XoC4cEtJIQRAQqjcqf4uo5V8vS7P00sMHv32cv8HtZJW0qgA/tOL k71FO96T36u0kX4JiWFHbgcemdnOj//ctrLLA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=sender:message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:x-enigmail-version:openpgp:content-type :content-transfer-encoding; b=okYqacc6lCLh++RGTeYZ47dNHoYWpigMl5Nx9mXNkaK3bq9H3lzx9pOirVLslkApTQ 5RZwFhJIiViDTi4hju9RiKSIzevsfwFKC2hqG3qJuOpJOgN4ENgd2WeesEzCmCcLWaJj d3IAm+VjZULKtyEgi3QH36iyTmLQXxMaeem70= Received: by 10.101.131.14 with SMTP id i14mr3759363ann.63.1274542975895; Sat, 22 May 2010 08:42:55 -0700 (PDT) Received: from centel.dataix.local (adsl-99-181-129-134.dsl.klmzmi.sbcglobal.net [99.181.129.134]) by mx.google.com with ESMTPS id b1sm5086055anb.0.2010.05.22.08.42.54 (version=SSLv3 cipher=RC4-MD5); Sat, 22 May 2010 08:42:55 -0700 (PDT) Sender: "J. Hellenthal" Message-ID: <4BF7FB7D.1010501@dataix.net> Date: Sat, 22 May 2010 11:42:53 -0400 From: jhell User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.9.1.9) Gecko/20100515 Thunderbird/3.0.4 MIME-Version: 1.0 To: RW References: <20100522005313.26dcfbdb@gumby.homeunix.com> <4BF787E2.9010907@dataix.net> <20100522120815.063975ae@gumby.homeunix.com> <4BF7C6EE.3010001@dataix.net> <20100522134212.3d5447a8@gumby.homeunix.com> In-Reply-To: <20100522134212.3d5447a8@gumby.homeunix.com> X-Enigmail-Version: 1.0.1 OpenPGP: id=89D8547E Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: ports@freebsd.org Subject: Re: Users and groups kept after a port deinstallation X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 May 2010 15:42:57 -0000 On 05/22/2010 08:42, RW wrote: > On Sat, 22 May 2010 07:58:38 -0400 > jhell wrote: > >> On 05/22/2010 07:08, RW wrote: >>> On Sat, 22 May 2010 03:29:38 -0400 >>> jhell wrote: >>> >>> >>>> Having unused logins on a system is bad! >>> >>> Why? >> >> For one example: >> This opens up a point of possible access to the system in which its >> integrity could be jeopardized. What all the implications are of this >> is out of scope for this thread. > > These are unprivileged accounts without passwords - you need root > privileges to use them. Nothing is going to be running under them or > they wouldn't be candidates for removal in the first place. Are we arguing the point that these should just be left or can we come to a point like I stated in the previous email that you so gracefully chopped out that stated: If they are to be left in the system a admin should be notified or they should be automatically removed upon package removal. This is more of a best practices case than what the implications of leaving users in the master.passwd are. -- jhell