Gentoo Archives: gentoo-dev

From: George Shapovalov <george@g.o>
To: gentoo-dev@g.o
Subject: Re: [gentoo-dev] Assigning unique system uid/gid for new ebuild
Date: Sun, 01 Jun 2003 17:44:39
In Reply to: Re: [gentoo-dev] Assigning unique system uid/gid for new ebuild by Evan Powers
1 On Saturday 31 May 2003 16:43, Evan Powers wrote:
2 > On Saturday 31 May 2003 04:53 am, Martin Lesser wrote:
3 > > I don't see any benefits of developing and/or maintaining a predefined
4 > > /etc/passwd with more than exactly one entry for root.
5 > I can see it being a huge practical advantage to know that two installs
6 > will have the same UID/GID assignments, and therefore that disk drives can
7 > be moved between them without mismatches.
9 Well, to address that we can create a "master-list" of gentuid/gentgid's a-la
10 /etc/services. When a package needs user/group it consults these lists in
11 order to pick "proper" id.
12 But then is there any security implication in doing it this way or otherwise?
13 If somehow security can be enhanced by keeping u/gids's random this may be
14 made optional and even with option to randomize u/gid's more..
16 George
20 --
21 gentoo-dev@g.o mailing list