Mailinglist Archive: opensuse-packaging (74 mails)

< Previous Next >
Re: [opensuse-packaging] no more nobody user on OBS?
On Tuesday 23 May 2017, Dominique Leuenberger / DimStar wrote:
On Tue, 2017-05-23 at 17:46 +0200, Stephan Kulow wrote:
Am 23.05.2017 um 17:35 schrieb Dominique Leuenberger / DimStar:
On Tue, 2017-05-23 at 16:47 +0200, Ruediger Meier wrote:

seems that Tumbleweed and Factory has no more user "nobody"
in /etc/passwd. Is this wanted?


That is indeed wanted - the list of users has constantly been
and for many users/groups, it is/was not clear what requires

So Thorsten worked on a way to change this - and packages
nowadays have
to specify if their content wants a specific user/group to be

See also the packaging guidelines at
ro ups

But 'nobody'? I don't see it as a system user - mere the lack of

Greetings, Stephan

historically, everything was thrown at 'nobody' for security reasons
- until somebody realized that entire systems running as nobody is
not actually secure, as services could start interacting.

'nobody' has no special meaning in any way.

The are programs which treat nobody as the only user which is neither a
system nor user account.

I don't see why it should
be treated specially (unlike root/uid=0);. It's still right at your
disposal if you have a package relying on it (e.g. NFS using it as
fallback for 'anonymous/unknown') - you just need to specify it.

You forget about users or thirdparty software which is still using
nobody for whatever reason. IMO it makes no sense that openSUSE is the
only existing Linux distro which does not provide "nobody/nogroup

We will get bug reports for sure if we remove nobody. It doesn't hurt to
keep it as it.

BTW "bin" and "daemon" are also missing. They are even *required* by
LSB, while "nobody" is optional.

To unsubscribe, e-mail: opensuse-packaging+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-packaging+owner@xxxxxxxxxxxx

< Previous Next >