From owner-freebsd-hackers@FreeBSD.ORG Tue Jun 28 20:12:27 2011 Return-Path: Delivered-To: hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7BFDE106567D for ; Tue, 28 Jun 2011 20:12:27 +0000 (UTC) (envelope-from utisoft@gmail.com) Received: from mail-iy0-f182.google.com (mail-iy0-f182.google.com [209.85.210.182]) by mx1.freebsd.org (Postfix) with ESMTP id 39DDE8FC15 for ; Tue, 28 Jun 2011 20:12:27 +0000 (UTC) Received: by iyb11 with SMTP id 11so655154iyb.13 for ; Tue, 28 Jun 2011 13:12:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:from:date :x-google-sender-auth:message-id:subject:to:cc:content-type :content-transfer-encoding; bh=YwL3wyIz4vQNI1P38DMuf8GKMvyBwjRjjUgw7QFvphg=; b=lSiAvTt6WdHJGnMVi8kWADwGZgtzBeIOM8cnhXyIdxCi4mrRw+fcHaWzcujfwR9hGk IlTuSPPjmyAVjsWDNOOZUUgNqJOG3X4O4kfhy4R6ccdMkqVQW+GMM54ZXTOMG5xT0kPs eGYE6lSwtXhVXzWHhaKKaL0+sh3G4PC7AF2t0= Received: by 10.231.114.86 with SMTP id d22mr1031267ibq.45.1309291945149; Tue, 28 Jun 2011 13:12:25 -0700 (PDT) MIME-Version: 1.0 Sender: utisoft@gmail.com Received: by 10.231.49.193 with HTTP; Tue, 28 Jun 2011 13:11:54 -0700 (PDT) In-Reply-To: References: <20110628165911.GC44024@dan.emsphone.com> From: Chris Rees Date: Tue, 28 Jun 2011 21:11:54 +0100 X-Google-Sender-Auth: Gthd97SRL8s8AXsF_TvJB95Sa5E Message-ID: To: jhell , Greg Lewis Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: hackers@freebsd.org, Dan Nelson Subject: Re: Default value for UIDs X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Jun 2011 20:12:27 -0000 On 28 June 2011 20:57, Chris Rees wrote: > On 28 June 2011 20:50, jhell wrote: >> On Tue, Jun 28, 2011 at 06:30:23PM +0100, Chris Rees wrote: >>> On 28 June 2011 17:59, Dan Nelson wrote: >>> > In the last episode (Jun 28), Chris Rees said: >>> >> Hi all, >>> >> >>> >> [crees@zeus]~% tail -n 2 /usr/ports/UIDs >>> >> dbxml:*:949:949::0:0:dbXML user:/nonexistent:/sbin/nologin >>> >> nobody:*:65534:65534::0:0:Unprivileged user:/nonexistent:/usr/sbin/n= ologin >>> >> [crees@zeus]~% grep crees /etc/passwd >>> >> crees:*:1001:1001:Chris Rees:/home/crees:/bin/tcsh >>> >> chris:*:1001:1001:Chris Rees:/home/crees:/bin/tcsh >>> >> [crees@zeus]~% >>> >> >>> >> I'm a little concerned at how close the ports UIDs are getting to th= e >>> >> username space... >>> > >>> > There are only 216 entries in UIDs, though, so if people are just usi= ng >>> > "last entry + 1" when adding new ones, they should probably start fil= ling >>> > the gaps instead. =A0The 100s and 200s are pretty dense, but 350-399 = only has >>> > 5 entries, 400-499 has 4, 600-699 has 7, 700-799 has 3, etc. >>> > >>> >>> Thank you for pointing that out (d'oh). >>> >>> However, perhaps we could still address the *potential* problems. To >>> use one example, Debian has (as long as I can remember) used 10001 for >>> the first username. When we have 65535 - 99 UIDs to play with, >>> expansion like this isn't a problem. >>> >>> Could it be worth it? Think of ten years down the line. >>> >> >> Best part would be to find every port that doesnt need a statically >> allocated UID/GID and just dynamically allocate them after a certain >> range '30000-50000' or whatever for ~20,000 ports and divide that >> namespace up by category. >> >> >> dbxml really does it really need to be static ? it just needs to run. >> >> Also: (stable/8) /usr/ports/UIDs >> dbxml:*:945:945::0:0:& user:/nonexistent:/sbin/nologin >> dbxml:*:949:949::0:0:dbXML user:/nonexistent:/sbin/nologin >> >> Which one of these are we planning on actually using here ? >> > > Interesting... glewis added the second one. > > Greg, what did the pointyhat say? > > http://www.freebsd.org/cgi/cvsweb.cgi/ports/UIDs.diff?r1=3D1.156;r2=3D1.1= 55;f=3Dh > Mystery solved. http://www.freebsd.org/cgi/cvsweb.cgi/ports/UIDs Chris