From mboxrd@z Thu Jan 1 00:00:00 1970 Delivery-date: Fri, 29 Nov 2024 09:35:47 +0100 Received: from metis.whiteo.stw.pengutronix.de ([2a0a:edc0:2:b01:1d::104]) by lore.white.stw.pengutronix.de with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from ) id 1tGwTb-001mrE-1M for lore@lore.pengutronix.de; Fri, 29 Nov 2024 09:35:47 +0100 Received: from localhost ([127.0.0.1] helo=metis.whiteo.stw.pengutronix.de) by metis.whiteo.stw.pengutronix.de with esmtp (Exim 4.92) (envelope-from ) id 1tGwTb-0006vd-J0; Fri, 29 Nov 2024 09:35:47 +0100 Received: from drehscheibe.grey.stw.pengutronix.de ([2a0a:edc0:0:c01:1d::a2]) by metis.whiteo.stw.pengutronix.de with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1tGwTT-0006vP-96; Fri, 29 Nov 2024 09:35:39 +0100 Received: from pty.whiteo.stw.pengutronix.de ([2a0a:edc0:2:b01:1d::c5]) by drehscheibe.grey.stw.pengutronix.de with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from ) id 1tGwTS-000kz0-14; Fri, 29 Nov 2024 09:35:39 +0100 Received: from mol by pty.whiteo.stw.pengutronix.de with local (Exim 4.96) (envelope-from ) id 1tGwTT-004m41-04; Fri, 29 Nov 2024 09:35:39 +0100 Date: Fri, 29 Nov 2024 09:35:38 +0100 From: Michael Olbrich To: Roland Hieber , ptxdist@pengutronix.de Message-ID: Mail-Followup-To: Roland Hieber , ptxdist@pengutronix.de References: <20241110230121.1282197-1-rhi@pengutronix.de> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20241110230121.1282197-1-rhi@pengutronix.de> X-Sent-From: Pengutronix Hildesheim X-URL: http://www.pengutronix.de/ X-Accept-Language: de,en X-Accept-Content-Type: text/plain X-IRC: #ptxdist @freenode Subject: Re: [ptxdist] [PATCH] avahi: use working defaults for user/group X-BeenThere: ptxdist@pengutronix.de X-Mailman-Version: 2.1.29 Precedence: list List-Id: PTXdist Development Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: ptxdist@pengutronix.de Sender: "ptxdist" X-SA-Exim-Connect-IP: 127.0.0.1 X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de X-SA-Exim-Scanned: No (on metis.whiteo.stw.pengutronix.de); SAEximRunCond expanded to false On Mon, Nov 11, 2024 at 12:01:22AM +0100, Roland Hieber wrote: > As stated by the (slightly outdated) comments, no user or group named > "avahi" or "avahi-autoipd" exists in the default /etc/passwd or > /etc/group in PTXdist, so Avahi will complain about the missing > user/group and refuse to start with the default configuration. Set the > default values to the unprivileged "nobody"/"nogroup" instead, which > already exist, and remove the outdated comments. Nack. These services have separate users for a reason. I understand that adding users is currently awkward. I've been thinking about better ways to do this for some time. I'm open for ideas about that. Regards, Michael > Signed-off-by: Roland Hieber > --- > rules/avahi.in | 20 ++++---------------- > 1 file changed, 4 insertions(+), 16 deletions(-) > > diff --git a/rules/avahi.in b/rules/avahi.in > index a038a1efeb2a..90ef7088110b 100644 > --- a/rules/avahi.in > +++ b/rules/avahi.in > @@ -74,22 +74,16 @@ if AVAHI_DAEMON > config AVAHI_USER > string > prompt "user for running the avahi (mDNS/DNS-SD) daemon" > - default "avahi" > + default "nobody" > help > Enter the user name to run the avahi (mDNS/DNS-SD) daemon with. > - The PTXdist standard configuration has only root, so if you want > - to use the avahi default user "avahi" you have to create > - a related user yourself. > > config AVAHI_GROUP > string > prompt "group for running the avahi (mDNS/DNS-SD) daemon" > - default "avahi" > + default "nogroup" > help > Enter the group name to run the avahi (mDNS/DNS-SD) daemon with. > - The PTXdist standard configuration has only root, so if you want > - to use the avahi default group "avahi" you have to create > - a related group yourself. > > config AVAHI_SERVICES > bool > @@ -130,22 +124,16 @@ if AVAHI_AUTOIP > config AVAHI_AUTOIP_USER > string > prompt "user for running the avahi autoip (IPv4LL) daemon" > - default "avahi-autoipd" > + default "nobody" > help > Enter the user name to run the avahi autoip (IPv4LL) daemon with. > - The PTXdist standard configuration has only root, so if you want > - to use the avahi default user "avahi-autoipd" you have to create > - a related user yourself. > > config AVAHI_AUTOIP_GROUP > string > prompt "group for running the avahi autoip (IPv4LL) daemon" > - default "avahi-autoipd" > + default "nogroup" > help > Enter the group name to run the avahi autoip (IPv4LL) daemon with. > - The PTXdist standard configuration has only root, so if you want > - to use the avahi default group "avahi-autoipd" you have to create > - a related group yourself. > endif > > config AVAHI_COMPAT > -- > 2.39.5 > > > -- Pengutronix e.K. | | Steuerwalder Str. 21 | http://www.pengutronix.de/ | 31137 Hildesheim, Germany | Phone: +49-5121-206917-0 | Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |