From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1N1NRf-0002at-8w for garchives@archives.gentoo.org; Fri, 23 Oct 2009 16:56:55 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id A94E8E09AB; Fri, 23 Oct 2009 16:56:36 +0000 (UTC) Received: from mail-ew0-f211.google.com (mail-ew0-f211.google.com [209.85.219.211]) by pigeon.gentoo.org (Postfix) with ESMTP id 67DFBE09AB for ; Fri, 23 Oct 2009 16:56:36 +0000 (UTC) Received: by ewy7 with SMTP id 7so8446917ewy.34 for ; Fri, 23 Oct 2009 09:56:35 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:from:to:subject:date :user-agent:references:in-reply-to:mime-version:content-type :content-transfer-encoding:message-id; bh=fHDx49V19nSOi0MmfvSaxMsjYdUUPuRvlw3XNjpiqFY=; b=WzeyCjw614OrgSdS1c3mljMJaUV3MMbGiiazWau7kv8i0UXjGtThLVrm9rVXa+Lfrc +oOiEQKAnf5Dtupf57il+gxHqq8QFbUIXc5TZRZiRSSK8a0COgfrJytY0zyM45PqS5ZA Zxv7iOC7UvJKEt9eEp9RaAq1KK9gNuBZ55Cw0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=from:to:subject:date:user-agent:references:in-reply-to:mime-version :content-type:content-transfer-encoding:message-id; b=TYIHJ7FayUv71ppULdcTNW3L7cKWwhCNnqDvabvwv201nQeI81mFkBkmXNmfkX6bWu R9jhZ+yyxrZRWaFvch3PEuS4biZvYtabT9C/edCE3oRWEe7NXqPPtYK4eUIN7Z1FMTjY I48LDQf/mafVvntEtMu4MVdMYjNOP19S1cCD8= Received: by 10.211.161.39 with SMTP id n39mr6215274ebo.29.1256316995852; Fri, 23 Oct 2009 09:56:35 -0700 (PDT) Received: from nazgul.localnet (196-210-140-101-rrdg-esr-2.dynamic.isadsl.co.za [196.210.140.101]) by mx.google.com with ESMTPS id 5sm5924101eyh.34.2009.10.23.09.56.34 (version=TLSv1/SSLv3 cipher=RC4-MD5); Fri, 23 Oct 2009 09:56:35 -0700 (PDT) From: Alan McKinnon To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] fcrontab - what am I missing [SOLVED] Date: Fri, 23 Oct 2009 18:55:32 +0200 User-Agent: KMail/1.12.2 (Linux/2.6.31-zen4; KDE/4.3.2; x86_64; ; ) References: In-Reply-To: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200910231855.32211.alan.mckinnon@gmail.com> X-Archives-Salt: 92903960-e050-433d-b04f-0aac281cc215 X-Archives-Hash: 73561d22d26cf855e37c817d20029f9a On Friday 23 October 2009 17:51:19 Helmut Jarausch wrote: > Hi, > > after hunting around for some weeks now, I've finally found the culprit > to my permission problems with fcron[tab] > > First, > some Gentoo package must have changed the UID of several executables > and directories of the sys-process/fcron package to 'stunnel' > instead of 'fcron'. > I've found and fixed these long ago but still it didn't work. > Now, I've found out, that in > /etc/passwd > the user 'fcron' had a GID which wasn't in /etc/group any longer. > Probably, when sys-process/fcron is reinstalled, portage does not > seem to change the entry in /etc/passwd (which it has created > itself some time ago) Without looking through the ebuilds, I'd guess the ebuild runs useradd -r which will always lead to your problem sooner or later. IMNSHO, /etc/{passwd,shadow,group} really should be part of the base install with all daemon users pre-defined. Use the range 1-99 for this, it will take a very long time to accumulate more than 99 daemon UIDs and one can confidently know what UID a given system user required by an ebuild ought to be. The implementation is obviously more complex than dropping a file on the file system, so a simple API is required. Nonetheless, the idea is still sound. The alternate is to expect users to know to run find / -nouser -o -nogroup at the magic points where it will be useful. Which is ludicrous. -- alan dot mckinnon at gmail dot com