From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 2A350139085 for ; Fri, 27 Jan 2017 18:53:09 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 36CFE254026; Fri, 27 Jan 2017 18:52:54 +0000 (UTC) Received: from mail-yw0-x22e.google.com (mail-yw0-x22e.google.com [IPv6:2607:f8b0:4002:c05::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id DB3AF2241B9 for ; Fri, 27 Jan 2017 18:52:53 +0000 (UTC) Received: by mail-yw0-x22e.google.com with SMTP id l19so197180370ywc.2 for ; Fri, 27 Jan 2017 10:52:53 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to; bh=hmqlne5CoHDrGe0kCYauRQGUkZZwLEE87UJ/E9ourY0=; b=Q0dBtr7YMd4bZObQLtc4mn0d/xpxPfZJAilLScDCVo3KqrBo3mhTJVZ7OqaMzc0ICB u4ZENm0Husk6RWu/sPB3sREdVe9CMe4MG+v0Ae87qjzp7xkf5wTmLUt8u1hZURsGCO+6 FHipABFFsq1szjutzZH4sYeODQvNSi0225vuLDBO0GPID+nkn0IIiS7X8A0QMGQgV4wA bWafC8SsuWfuEVs5cdInloXxGofPoOVAplQIe03r9fBvpiiVu+TwlfJuM2VYfSP3sMvs dPvppo/wlMdDNeMPydNzqWt0YrpwKFWUzGyTB+kY25/r83nXhROMr8QyY+/eN3INKHCr vY1A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to; bh=hmqlne5CoHDrGe0kCYauRQGUkZZwLEE87UJ/E9ourY0=; b=gINw4FPT9SqJwUi1wtInGZFs64iwhVzUJPQE8o0QnBucXy8yiZ7BsgJBd+J/yjQons 0gLkV2EgLjMNid4wvC6wQdTD+bE/EStqu7JWgAO6yGhJq/VC/Y+XEPTEM65Pe/fZXeeY /TU4MzzqlIeO3hspnygmkrpZuWDFlW2JCc/t08JzASUJmrx369KK59rSHqnRfS1JR2Jx c1pUjkewUDRRbaMdfujO1H/WP4fuRhaxQAIEyWY3/kPrYIIPXsMlNUA/R35SE36J2s17 lJWoB1RjCUZf9oji6freVNE8/GK+OUh1Uu7gegQbWTJNCEtV7nmiMtU2AbRjFrDqwqLF 9VVg== X-Gm-Message-State: AIkVDXK4eY7yCurFIt+oHyGH+ym+pI28dWbeOcK8+ecxGGOEitj/eaZ6vozhjmw9pGMN8wQ29IxetDVrwu3uKw== X-Received: by 10.13.254.195 with SMTP id o186mr6653203ywf.148.1485543172945; Fri, 27 Jan 2017 10:52:52 -0800 (PST) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Sender: freemanrich@gmail.com Received: by 10.13.239.193 with HTTP; Fri, 27 Jan 2017 10:52:52 -0800 (PST) In-Reply-To: <9558d41c-17c0-4bbd-e2f8-02575c6d0ecd@gentoo.org> References: <9558d41c-17c0-4bbd-e2f8-02575c6d0ecd@gentoo.org> From: Rich Freeman Date: Fri, 27 Jan 2017 13:52:52 -0500 X-Google-Sender-Auth: -AVjXpWEQJ6iSlGZla2gZE-Ugbc Message-ID: Subject: Re: [gentoo-dev] Requirements for UID/GID management To: gentoo-dev Content-Type: text/plain; charset=UTF-8 X-Archives-Salt: f40a2d70-22a7-4284-a747-84eabd1665de X-Archives-Hash: 64bf023f76d1795a7de7070a04ef8000 On Fri, Jan 27, 2017 at 12:54 PM, Michael Orlitzky wrote: > > You don't really have to care what UID/GID is assigned, because each > user/group will only be created once and referenced by name (as $PN). By > default, we could pick the first available UID in most packages. I might be not following correctly, but due to how filesystems/etc work it is probably desirable to have consistent UID/GIDs as much as reasonably possible. Things like NFS, chroots, containers, and so on can be a bit simpler if these are consistent, because they involve one system having visibility into a filesystem hosted on another, and usually in these cases the UID/GID is what is kept constant, not the name. (IMO UID/GID namespace is one of those areas where Linux/POSIX/etc has some weaknesses.) This doesn't really seem like a problem though. Just have a table somewhere (wiki?) to track who is using what UID/GID and encode those defaults into the ebuild that creates those users. Overall I like your proposal. -- Rich