From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id C90C0139085 for ; Sun, 29 Jan 2017 22:13:32 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 04BA11460C; Sun, 29 Jan 2017 22:13:19 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id A1640145D4 for ; Sun, 29 Jan 2017 22:13:18 +0000 (UTC) Received: from [192.168.1.100] (c-98-218-46-55.hsd1.md.comcast.net [98.218.46.55]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: mjo) by smtp.gentoo.org (Postfix) with ESMTPSA id CE68A3409C1 for ; Sun, 29 Jan 2017 22:13:17 +0000 (UTC) Subject: Re: [gentoo-dev] Requirements for UID/GID management To: gentoo-dev@lists.gentoo.org References: <9558d41c-17c0-4bbd-e2f8-02575c6d0ecd@gentoo.org> From: Michael Orlitzky Message-ID: Date: Sun, 29 Jan 2017 17:13:15 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.6.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 In-Reply-To: <9558d41c-17c0-4bbd-e2f8-02575c6d0ecd@gentoo.org> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Archives-Salt: dc31d04c-400c-4952-9fa3-e4ae8b54992c X-Archives-Hash: 98d412a315aefc0df31694d4133b9f56 On 01/27/2017 12:54 PM, Michael Orlitzky wrote: > We approved GLEP 27 (https://wiki.gentoo.org/wiki/GLEP:27) in 2004 but > never implemented it. I'm wondering what are the explicit requirements > that we have for user and group management? > > What I'm really wondering is, instead of the proposal in GLEP27, if we > couldn't simply handle users like any other package. I put together a draft of the "fixed UIDs with random fallback" model: https://wiki.gentoo.org/wiki/User:Mjo/GLEP:User_packages If we decide to fix UID/GID management, I think it would be a lot easier to implement that draft than GLEP:27. I would be interested in hearing for which use cases GLEP:27 would be preferable. If anyone wants to play with the draft or work on a reference implementation, I can move this stuff to a public namespace.