Henne Vogelsang wrote:
On 26.03.2014 11:55, Guido Berhoerster wrote:
Sharing a user name between a system user and a normal user leads to surprising or even security relevant misbehavior as the daemon user may write to files in the real user's home or vice versa.
That one you have to explain to me. How is that possible if the UID is different?
hans@rhett:~> id uid=13045(hans) gid=100(users) groups=100(users) hans@rhett:~> ls -lad /home/hans drwxr-xr-x 2 hans users 4096 Mar 26 13:25 /home/hans hans@rhett:~> ls -ladn /home/hans drwxr-xr-x 2 13044 100 4096 Mar 26 13:25 /home/hans hans@rhett:~> touch /home/hans/blah touch: cannot touch ‘/home/hans/blah’: Permission denied hans@rhett:~>
So you manually edited your /etc/passwd or forced useradd to create two user hans with different uids. That's not what happens when installing packages. Packages typically call useradd in %pre. If the user already exists the useradd is either not called or the error ignored. So the package would re-user the existing user. In the case of hans the one with uid 13044 that owns /home/hans. There wouldn't be a second hans with uid 13045. cu Ludwig -- (o_ Ludwig Nussel //\ V_/_ http://www.suse.de/ SUSE LINUX Products GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org