Date: Tue, 20 Mar 2001 00:25:37 -0700 From: Brett Glass <brett@lariat.org> To: Sergey Babkin <babkin@bellatlantic.net>, Terry Lambert <tlambert@primenet.com> Cc: security@FreeBSD.ORG, Wes Peters <wes@softweyr.com>, Robert Watson <rwatson@FreeBSD.ORG>, fs@FreeBSD.ORG, arch@FreeBSD.ORG Subject: Re: about common group & user ID space (PR kern/14584) Message-ID: <4.3.2.7.2.20010320002008.00d12b50@localhost> In-Reply-To: <3AB6AF1F.9452E231@bellatlantic.net> References: <200103182339.QAA18696@usr05.primenet.com>
next in thread | previous in thread | raw e-mail | index | archive | help
At 06:15 PM 3/19/2001, Sergey Babkin wrote: >> > on (a) the number of groups of which a user can be a member and (b) the > >For this there is some macro (can't remember the name) which >can be defined in the kernel config file as an option with >a higher value. Setting it higher means higher system overhead >but since the memory size has increased significantly over >the last few years, I think that a higher default value makes >sense. I do too. Could you submit this as a patch? >I think there is such a limit. Or at least it was in the 2.0.5 days. >I'm not sure about the line length limit. I remember that there >was such a limit in SVR4.2, so if a group line grew past some size, >getgrent() and friends went crazy. I believe that it was between 100 and 130 when it lost it. Don't know if it was the number of characters or the number of users. >The common workaround it to split a group record into multiple >lines in /etc/group, like: > >staff:*:20:root >staff:*:20:babkin > >Keep no more than about ~50 users per line. >This may break things like adduser but it's not a big loss. Breaking adduser WOULD be a loss. If one of our sysadmins-in-training was adding users to the system, he or she wouldn't know what to do next. And those of us who COULD wouldn't want to take the time. Perhaps adduser ought to be patched to deal with this... say, by understanding multiple lines and limiting the number of users on any one line. --Brett To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.3.2.7.2.20010320002008.00d12b50>