On Thu, Aug 5, 2021 at 5:37 AM Maurizio Galli <mauriziogalli@opensuse.org> wrote:
On Thu, Aug 5, 2021 at 3:18 PM Thorsten Kukuk <kukuk@suse.de> wrote:
We change explicit: USERGROUPS_ENAB from "yes" to "no". All other tools we provide and other distros do create usergroups by default, so I suggest to change it back to "USERGROUPS_ENAB yes".
CREATE_HOME from "yes" to "no". I did never understand why we disabled this. All other tools we provide and other distros create the home directory by default. I would suggest to change that back to "yes".
FORCE_SHADOW from "yes" to "no". I also don't understand this change. We should revert that change, so we don't need the hacks in other places to split passwd later during installation. If we enforce the shadow usage later, why not from the beginning?
HOME_MODE not set We should set "HOME_MODE 0700" as other distros do.
Any comments?
It didn't bother me but I also wondered why we have those changes. I agree with Thorsten's proposed changes unless there are good reasons explaining the settings the way they are.
Could we also change SUSE distributions to configure subuid and subgid by default like Fedora does? Then rootless podman would just work out of the box. I struggled to get this working for a talk of mine a while back, and it'd be nice to not have to suffer in the future... -- 真実はいつも一つ!/ Always, there's only one truth!