On 2011-06-14 23:17, Pav Lucistnik wrote:
> Olli Hauer pe v t 14. 06. 2011 v 23:15 +0200:
>> On 2011-06-14 22:41, Chris Rees wrote:
>>> 2011/6/14 Pav Lucistnik <pav@freebsd.org>:
>>>> Maybe I missed something, but why do we need nobody user here, when we
>>>> already have it in default master.passwd on every new installation?
>>>>
>>>> $ grep nobody /usr/src/etc/master.passwd
>>>> nobody:*:65534:65534::0:0:Unprivileged user:/nonexistent:/usr/sbin/nologin
>>>>
>>>
>>> Because the code in bsd.port.mk fails if a group is in GROUPS but not GIDs.
>>>
>>> Of course, I realised as you pointed that out that it's unnecessary,
>>> because the nobody reference isn't in GROUPS, so not parsed by that
>>> code.
>>>
>>> Should I remove the line in UIDs / GIDs?
>>>
>>
>> I think it's not a bad Idea to have even the default system
>> users in ports/GIDs ports/UIDs.
>
> What for? They will never be added to the system (because group of same
> name is already present)
>
Example postfix:
USERS= postfix
GROUPS= postfix maildrop mail
In ports/GIDs we need for full support
- mail:*:6:postfix
- postfix:*:125:
- maildrop:*:126:
The framework will then
- create the groups postfix and maildrop
- add postfix to the group mail
Without the predefined group mail the postfix can only use the framework
partially and do the rest (add postfix to group mail) with the pkg-install scrip
it is then not possible with the framework.