From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1RXDK9-0002an-Ej for garchives@archives.gentoo.org; Sun, 04 Dec 2011 14:45:49 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 0A56421C12F; Sun, 4 Dec 2011 14:45:40 +0000 (UTC) Received: from mail-vx0-f189.google.com (mail-vx0-f189.google.com [209.85.220.189]) by pigeon.gentoo.org (Postfix) with ESMTP id BB7C521C127 for ; Sun, 4 Dec 2011 14:44:50 +0000 (UTC) Received: by vcbfk26 with SMTP id fk26so4622437vcb.16 for ; Sun, 04 Dec 2011 06:44:50 -0800 (PST) Received: by 10.52.76.169 with SMTP id l9mr3816000vdw.17.1323009890037; Sun, 04 Dec 2011 06:44:50 -0800 (PST) Path: glegroupsg2000goo.googlegroups.com!not-for-mail Newsgroups: linux.gentoo.dev Date: Sun, 4 Dec 2011 06:44:49 -0800 (PST) In-Reply-To: Complaints-To: groups-abuse@google.com Injection-Info: glegroupsg2000goo.googlegroups.com; posting-host=90.190.167.138; posting-account=m_uFKxAAAAA6XrrK4JGBpeJAGAdNhqIk NNTP-Posting-Host: 90.190.167.138 References: User-Agent: G2/1.0 X-Google-Web-Client: true Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Message-ID: <4732345.520.1323009889903.JavaMail.geo-discussion-forums@yqbg11> Subject: Re: [gentoo-dev] user management mitigation From: Leho Kraav To: linux.gentoo.dev@googlegroups.com Cc: gentoo-dev@lists.gentoo.org Content-Type: text/plain; charset=ISO-8859-1 X-Archives-Salt: 73437aa0-fdcb-4e40-a6ab-5b34850b9a3d X-Archives-Hash: 7809652e7b658dbe9b1230c04e068f79 So after a reading through a bunch of stuff [1][2][3][4][5], what I'm going to do for the goal above is: * move to sys-apps/shadow trunk [6] * fork my own user.eclass from v1.17, modify it to use --root $ROOT when calling shadow stuff * stick my user.eclass into myoverlay/eclass/ * # echo "lkraav" > myoverlay/profiles/repo_name * # echo "[DEFAULT]\neclass-overrides = lkraav" > /etc/portage/repos.conf * # echo "PORTAGE_RSYNC_EXTRA_OPTS=\"--exclude=/metadata/cache\"" >> /etc/make.conf * # rm -rf /usr/portage/metadata/cache * # echo "emerge --regen" >> /etc/cron.weekly/09-my-portage-update-script * subscribe to atom feed of portage user.eclass changes, merge stuff until sys-apps/shadow-4.1.4.5 surfaces and maybe main tree user.eclass gets patched to use --root * try to achieve clamlike happiness with this setup Anything particularly important I'm missing? Is this the rightish way to do it? [1]: https://forums.gentoo.org/viewtopic-p-5877500.html [2]: https://groups.google.com/forum/#!topic/linux.gentoo.dev/FYJ4g5IryIw/discussion [3]: https://alioth.debian.org/tracker/index.php?func=detail&aid=312407&group_id=30580&atid=411480 [4]: https://bugs.gentoo.org/show_bug.cgi?id=53269' [5]: http://www.linux-archive.org/gentoo-embedded/295178-emerge-root-users-not-created.html [6]: https://bugs.gentoo.org/show_bug.cgi?id=393073