* [ptxdist] [PATCH] avahi: use working defaults for user/group
@ 2024-11-10 23:01 Roland Hieber
2024-11-29 8:35 ` Michael Olbrich
0 siblings, 1 reply; 4+ messages in thread
From: Roland Hieber @ 2024-11-10 23:01 UTC (permalink / raw)
To: ptxdist; +Cc: Roland Hieber
As stated by the (slightly outdated) comments, no user or group named
"avahi" or "avahi-autoipd" exists in the default /etc/passwd or
/etc/group in PTXdist, so Avahi will complain about the missing
user/group and refuse to start with the default configuration. Set the
default values to the unprivileged "nobody"/"nogroup" instead, which
already exist, and remove the outdated comments.
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
---
rules/avahi.in | 20 ++++----------------
1 file changed, 4 insertions(+), 16 deletions(-)
diff --git a/rules/avahi.in b/rules/avahi.in
index a038a1efeb2a..90ef7088110b 100644
--- a/rules/avahi.in
+++ b/rules/avahi.in
@@ -74,22 +74,16 @@ if AVAHI_DAEMON
config AVAHI_USER
string
prompt "user for running the avahi (mDNS/DNS-SD) daemon"
- default "avahi"
+ default "nobody"
help
Enter the user name to run the avahi (mDNS/DNS-SD) daemon with.
- The PTXdist standard configuration has only root, so if you want
- to use the avahi default user "avahi" you have to create
- a related user yourself.
config AVAHI_GROUP
string
prompt "group for running the avahi (mDNS/DNS-SD) daemon"
- default "avahi"
+ default "nogroup"
help
Enter the group name to run the avahi (mDNS/DNS-SD) daemon with.
- The PTXdist standard configuration has only root, so if you want
- to use the avahi default group "avahi" you have to create
- a related group yourself.
config AVAHI_SERVICES
bool
@@ -130,22 +124,16 @@ if AVAHI_AUTOIP
config AVAHI_AUTOIP_USER
string
prompt "user for running the avahi autoip (IPv4LL) daemon"
- default "avahi-autoipd"
+ default "nobody"
help
Enter the user name to run the avahi autoip (IPv4LL) daemon with.
- The PTXdist standard configuration has only root, so if you want
- to use the avahi default user "avahi-autoipd" you have to create
- a related user yourself.
config AVAHI_AUTOIP_GROUP
string
prompt "group for running the avahi autoip (IPv4LL) daemon"
- default "avahi-autoipd"
+ default "nogroup"
help
Enter the group name to run the avahi autoip (IPv4LL) daemon with.
- The PTXdist standard configuration has only root, so if you want
- to use the avahi default group "avahi-autoipd" you have to create
- a related group yourself.
endif
config AVAHI_COMPAT
--
2.39.5
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [ptxdist] [PATCH] avahi: use working defaults for user/group
2024-11-10 23:01 [ptxdist] [PATCH] avahi: use working defaults for user/group Roland Hieber
@ 2024-11-29 8:35 ` Michael Olbrich
2025-02-13 13:40 ` Roland Hieber
0 siblings, 1 reply; 4+ messages in thread
From: Michael Olbrich @ 2024-11-29 8:35 UTC (permalink / raw)
To: Roland Hieber, ptxdist
On Mon, Nov 11, 2024 at 12:01:22AM +0100, Roland Hieber wrote:
> As stated by the (slightly outdated) comments, no user or group named
> "avahi" or "avahi-autoipd" exists in the default /etc/passwd or
> /etc/group in PTXdist, so Avahi will complain about the missing
> user/group and refuse to start with the default configuration. Set the
> default values to the unprivileged "nobody"/"nogroup" instead, which
> already exist, and remove the outdated comments.
Nack. These services have separate users for a reason.
I understand that adding users is currently awkward. I've been thinking
about better ways to do this for some time. I'm open for ideas about that.
Regards,
Michael
> Signed-off-by: Roland Hieber <rhi@pengutronix.de>
> ---
> rules/avahi.in | 20 ++++----------------
> 1 file changed, 4 insertions(+), 16 deletions(-)
>
> diff --git a/rules/avahi.in b/rules/avahi.in
> index a038a1efeb2a..90ef7088110b 100644
> --- a/rules/avahi.in
> +++ b/rules/avahi.in
> @@ -74,22 +74,16 @@ if AVAHI_DAEMON
> config AVAHI_USER
> string
> prompt "user for running the avahi (mDNS/DNS-SD) daemon"
> - default "avahi"
> + default "nobody"
> help
> Enter the user name to run the avahi (mDNS/DNS-SD) daemon with.
> - The PTXdist standard configuration has only root, so if you want
> - to use the avahi default user "avahi" you have to create
> - a related user yourself.
>
> config AVAHI_GROUP
> string
> prompt "group for running the avahi (mDNS/DNS-SD) daemon"
> - default "avahi"
> + default "nogroup"
> help
> Enter the group name to run the avahi (mDNS/DNS-SD) daemon with.
> - The PTXdist standard configuration has only root, so if you want
> - to use the avahi default group "avahi" you have to create
> - a related group yourself.
>
> config AVAHI_SERVICES
> bool
> @@ -130,22 +124,16 @@ if AVAHI_AUTOIP
> config AVAHI_AUTOIP_USER
> string
> prompt "user for running the avahi autoip (IPv4LL) daemon"
> - default "avahi-autoipd"
> + default "nobody"
> help
> Enter the user name to run the avahi autoip (IPv4LL) daemon with.
> - The PTXdist standard configuration has only root, so if you want
> - to use the avahi default user "avahi-autoipd" you have to create
> - a related user yourself.
>
> config AVAHI_AUTOIP_GROUP
> string
> prompt "group for running the avahi autoip (IPv4LL) daemon"
> - default "avahi-autoipd"
> + default "nogroup"
> help
> Enter the group name to run the avahi autoip (IPv4LL) daemon with.
> - The PTXdist standard configuration has only root, so if you want
> - to use the avahi default group "avahi-autoipd" you have to create
> - a related group yourself.
> endif
>
> config AVAHI_COMPAT
> --
> 2.39.5
>
>
>
--
Pengutronix e.K. | |
Steuerwalder Str. 21 | http://www.pengutronix.de/ |
31137 Hildesheim, Germany | Phone: +49-5121-206917-0 |
Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [ptxdist] [PATCH] avahi: use working defaults for user/group
2024-11-29 8:35 ` Michael Olbrich
@ 2025-02-13 13:40 ` Roland Hieber
2025-02-13 20:20 ` Bruno Thomsen
0 siblings, 1 reply; 4+ messages in thread
From: Roland Hieber @ 2025-02-13 13:40 UTC (permalink / raw)
To: ptxdist
On Fri, Nov 29, 2024 at 09:35:38AM +0100, Michael Olbrich wrote:
> On Mon, Nov 11, 2024 at 12:01:22AM +0100, Roland Hieber wrote:
> > As stated by the (slightly outdated) comments, no user or group named
> > "avahi" or "avahi-autoipd" exists in the default /etc/passwd or
> > /etc/group in PTXdist, so Avahi will complain about the missing
> > user/group and refuse to start with the default configuration. Set the
> > default values to the unprivileged "nobody"/"nogroup" instead, which
> > already exist, and remove the outdated comments.
>
> Nack. These services have separate users for a reason.
>
> I understand that adding users is currently awkward. I've been thinking
> about better ways to do this for some time. I'm open for ideas about that.
Hmh yes, something like an install_* macro that is called in the targetinstall
stage, and writes the to-be-created users into a file from where the rootfs
package will pick it up later?
- Roland
--
Roland Hieber, Pengutronix e.K. | rhi@pengutronix.de |
Steuerwalder Str. 21 | https://www.pengutronix.de/ |
31137 Hildesheim, Germany | Phone: +49-5121-206917-0 |
Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [ptxdist] [PATCH] avahi: use working defaults for user/group
2025-02-13 13:40 ` Roland Hieber
@ 2025-02-13 20:20 ` Bruno Thomsen
0 siblings, 0 replies; 4+ messages in thread
From: Bruno Thomsen @ 2025-02-13 20:20 UTC (permalink / raw)
To: ptxdist
Den tors. 13. feb. 2025 kl. 14.40 skrev Roland Hieber <rhi@pengutronix.de>:
>
> On Fri, Nov 29, 2024 at 09:35:38AM +0100, Michael Olbrich wrote:
> > On Mon, Nov 11, 2024 at 12:01:22AM +0100, Roland Hieber wrote:
> > > As stated by the (slightly outdated) comments, no user or group named
> > > "avahi" or "avahi-autoipd" exists in the default /etc/passwd or
> > > /etc/group in PTXdist, so Avahi will complain about the missing
> > > user/group and refuse to start with the default configuration. Set the
> > > default values to the unprivileged "nobody"/"nogroup" instead, which
> > > already exist, and remove the outdated comments.
> >
> > Nack. These services have separate users for a reason.
> >
> > I understand that adding users is currently awkward. I've been thinking
> > about better ways to do this for some time. I'm open for ideas about that.
I know Fedora is looking at solving this issue [1] with systemd sysusers.d [2]
but that is ofcourse not possible in non-systemd builds.
/Bruno
[1] https://fedoraproject.org/wiki/Changes/RPMSuportForSystemdSysusers
[2] https://www.freedesktop.org/software/systemd/man/latest/sysusers.d.html
> Hmh yes, something like an install_* macro that is called in the targetinstall
> stage, and writes the to-be-created users into a file from where the rootfs
> package will pick it up later?
>
> - Roland
>
> --
> Roland Hieber, Pengutronix e.K. | rhi@pengutronix.de |
> Steuerwalder Str. 21 | https://www.pengutronix.de/ |
> 31137 Hildesheim, Germany | Phone: +49-5121-206917-0 |
> Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |
>
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2025-02-13 20:20 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2024-11-10 23:01 [ptxdist] [PATCH] avahi: use working defaults for user/group Roland Hieber
2024-11-29 8:35 ` Michael Olbrich
2025-02-13 13:40 ` Roland Hieber
2025-02-13 20:20 ` Bruno Thomsen
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox