From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 199E5138334 for ; Sun, 25 Aug 2019 17:30:06 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 905DEE07DB; Sun, 25 Aug 2019 17:29:59 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 5B81AE07B3 for ; Sun, 25 Aug 2019 17:29:58 +0000 (UTC) Received: from mail-io1-f47.google.com (mail-io1-f47.google.com [209.85.166.47]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: floppym) by smtp.gentoo.org (Postfix) with ESMTPSA id 19329349E5A for ; Sun, 25 Aug 2019 17:29:56 +0000 (UTC) Received: by mail-io1-f47.google.com with SMTP id e20so31704346iob.9 for ; Sun, 25 Aug 2019 10:29:56 -0700 (PDT) X-Gm-Message-State: APjAAAXeGejcL2IAe6SZPy8Bdz6OLoyi9eIiQKZ5jRxFILEExJwjaMu+ mlMY8uEM/IS369/RPdy78NWhzOid7tmEqb1L9iY= X-Google-Smtp-Source: APXvYqwISI/ZwxwO2gJqYAWRxACUJ956sop5dyNVas8YlHhqZTiRl44xKKQWdZwH91FBMXL4GVMJBRMH4/vjDpY9BUE= X-Received: by 2002:a5d:8352:: with SMTP id q18mr14064029ior.154.1566754194187; Sun, 25 Aug 2019 10:29:54 -0700 (PDT) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 References: <868bfb085db25789d8e940340f5d3b30db42a789.camel@gentoo.org> <167dbeac-f516-4706-a558-9f105cad1886@earthlink.net> <6b8502ef-9a32-eb8b-59cf-e9f0989d2714@earthlink.net> In-Reply-To: <6b8502ef-9a32-eb8b-59cf-e9f0989d2714@earthlink.net> From: Mike Gilbert Date: Sun, 25 Aug 2019 13:29:43 -0400 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: [gentoo-dev] Reserve mythtv user UID 103 To: Gentoo Dev Content-Type: text/plain; charset="UTF-8" X-Archives-Salt: c5543e73-da68-44af-9457-28f1830deb27 X-Archives-Hash: bf64b50ec165997744d52b1f23543c76 On Sun, Aug 25, 2019 at 9:10 AM The Bit Pit wrote: > > > On 8/24/19 5:11 PM, Mike Gilbert wrote: > > On Sat, Aug 24, 2019 at 5:28 PM The Bit Pit wrote: > >> Group is not needed. mythtv uses the video group. This is already in my pull request #12763 to bump to version 30.0 patch. I added myself as proxy maintainer to acct-user/mythtv > > I assume it is in the video group so that it can access device nodes in /dev? > That is correct. > > mythtv also creates and displays many video files shared with other > applications. I thought the "video" group was a way to permit that. Is > there a better way than putting them in the "video" group? The video group is primarily used by udev to grant access to graphics hardware. Using the video group to control access to video recording files seems wrong to me. If you need a common group to allow access to files shared among several applications, you should probably create a separate group for that. > > > > It might be a nice idea to give it its own primary group id, This > > ensures that files it creates will not be automatically exposed to any > > other random users that are members of the "video" group. You can add > > it to as many supplementary groups as you need. > > > >> I need you to create a acct-group/uucp as it is not in the tree yet. > > Please note that recent versions of udev/systemd use the "dialout" > > group for serial devices instead of the old "uucp" group. You might > > want to just switch over to that. > > > > > I agree and withdraw my request for "uucp" group. It is in out of date > mythtv documentation and the previous ebuild. > > Should I check the use flags for flags enabling support for devices > needing "dialout" group and modify the installed mythtv user rather than > including group "dialout" in the "acct-user/mythtv" package? I'm not sure it would be appropriate to modify the group membership of the mythtv user within the media-tv/mythtv ebuild. Maybe you could add USE flags to control group membership in the acct-user/mythtv ebuild. You could then depend on these USE flags withing the media-tv/mythtv ebuild as needed. Or maybe I'm over-complicating this; opinions welcome.