From mboxrd@z Thu Jan 1 00:00:00 1970 From: Warren Togami Subject: Re: /etc/passwd thoughts Date: Tue, 16 Jun 2009 14:42:19 -0400 Message-ID: <4A37E78B.10308@redhat.com> References: <4A32B84E.8090603@redhat.com> <20090612202045.GA30968@nostromo.devel.redhat.com> <4A32B94E.10902@redhat.com> <4A32C6CF.9010802@bfh.ch> <1244859170.18551.9.camel@obelisk.thedillows.org> Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <1244859170.18551.9.camel-1q1vX8mYZiGLUyTwlgNVppKKF0rrzTr+@public.gmane.org> Sender: initramfs-owner-u79uwXL29TY76Z2rM5mHXA@public.gmane.org List-ID: Content-Type: text/plain; charset="us-ascii"; format="flowed" To: David Dillow Cc: Seewer Philippe , initramfs On 06/12/2009 10:12 PM, David Dillow wrote: > On Fri, 2009-06-12 at 23:21 +0200, Seewer Philippe wrote: >> Actually 95nfs doesn't create its own entry. The part is commented out. > > Right; I'm torn on this. We want to support both portmap and rpcbind, > and at least rpcbind needs a user to run as -- it won't run without it. > I don't know what portmap wants. > > I have it copying the passwd file as that seemed to be the most > distro-agnostic way I could do it. > > I see a few options -- > 1) Copy /etc/passwd from the distro into the initrd; exposes user names, > but passwords should be in /etc/shadow and hence not copied. > 2) Make our own users for rpcbind (and portmap if different) and just > use that. rpcbind gets killed before we transition to root, so the uid > doesn't have to match up. It seems the correct way would be: If rpcbind, then write only the necessary user into the initrd's /etc/passwd. Do not copy the generating system's /etc/passwd. Any objections? Warren Togami wtogami-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org -- To unsubscribe from this list: send the line "unsubscribe initramfs" in the body of a message to majordomo-u79uwXL29TY76Z2rM5mHXA@public.gmane.org More majordomo info at http://vger.kernel.org/majordomo-info.html