[Adduser-devel] Bug#290623: adduser should never use "nogroup" as a user's group

Joerg Hoh joerg at joerghoh.de
Sun Sep 2 15:27:29 UTC 2007

tags 290623 +wontfix

On Sun, Jun 24, 2007 at 11:56:31AM +0200, Joerg Hoh wrote:
> In my opinion any package who wants to use an unprivileged user ("nouser") or 
> group ("nogroup") should create a separate user for that usage (see the 
> www-data user for httpd). In any other way there maybe conflicts/security 
> implications when 2 processes are there with with privileges dropped and now 
> using "nouser:nogroup".

I'll tag it as wontfix.


What did you do to the cat? It looks half-dead. -Schroedinger's wife
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/adduser-devel/attachments/20070902/24d62c2d/attachment.pgp 

More information about the Adduser-devel mailing list