gnu_srs1 | Hi, any ideas why systemd-standalone-sysusers is not blocked? What does it do/don't do, except being something that should/could be installed by non-systemd systems? | 20:39 |
---|---|---|
gnu_srs1 | I've blocked it for now :) | 20:39 |
Xenguy | good question | 21:01 |
fsmithred | Provides: systemd-sysusers | 21:10 |
fsmithred | ^^^ I don't know what needs systemd-sysusers, but we don't have that one. | 21:11 |
rwp | apt-cache rdepends systemd-standalone-sysusers | 21:11 |
fsmithred | So it satisfies a dep for a banned package. | 21:11 |
rwp | It appears to me to be an adduser postinst alternative written in the systemd style. Define a file /etc/sysusers.d/foo.conf with a table of users and at start time systemd will create those users. | 21:14 |
rwp | Previously packages would create users in the postinst using adduser. | 21:15 |
fsmithred | WTF! | 21:15 |
Xenguy | 'Do it all, with systed!' | 21:16 |
Xenguy | *systemd | 21:16 |
fsmithred | cyst | 21:16 |
rwp | https://manpages.debian.org/unstable/systemd/sysusers.d.5.en.html | 21:20 |
rwp | As a btw though I see that it creates users I don't see any way to have it clean up users when a package is purged. Seems like a hole. | 21:21 |
fsmithred | !!!!! | 21:22 |
rwp | Though I know that there is a difference of opinion between developers about whether removal should be done or not. I think removals should happen. But I know others argue that removals should never happen. | 21:22 |
rwp | I know that files on disk have two integer fields for uid and gid and that when doing an ls -l that these are looked up and the human readable name is displayed. | 21:24 |
rwp | When users are removed then ls -l will only be able to display the digits without a name. | 21:24 |
rwp | This seems to scare people I have debated this issue with previously. They fear this state. Yet I know not why. | 21:24 |
rwp | Assuming that a file remained behind after a purge this is what would be seen. It's an unusual case and it would be a package bug if it were to exist. piuparts testing should find and report this problem if it were to exist in a package. | 21:25 |
rwp | And as for actual files of people often people exit employment and as a security requirement we are required to remove their login account, which leaves any files they own left behind reported as numbers. | 21:26 |
rwp | Therefore we used to rename the account with a '!' suffix just as an indicator that those files were last owned by "rwp" and "rwp!" is not working there anymore. | 21:26 |
rwp | Anyway... It's not a problem and accounts added by a package should be removed when the package is purged. | 21:27 |
Generated by irclog2html.py 2.17.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!