RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

classic Classic list List threaded Threaded
13 messages Options
Reply | Threaded
Open this post in threaded view
|

RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Anthony G. Basile
Hi everyone,

I'm requesting

1) uid/gid = 70/70 for net-dns/avahi

2) uid/gid = 997/995 for net-vpn/tor

3) uid/gid = 485/485 for net-misc/stunnel

Both avahi and tor follow fedora.  The values for stunnel were the
highest available values below 500.

--
Anthony G. Basile, Ph.D.
Gentoo Linux Developer [Hardened]
E-Mail    : [hidden email]
GnuPG FP  : 1FED FAD9 D82C 52A5 3BAB  DC79 9384 FA6E F52D 4BBA
GnuPG ID  : F52D4BBA

Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Michał Górny-5
On Wed, 2019-11-27 at 11:52 -0500, Anthony G. Basile wrote:
> 2) uid/gid = 997/995 for net-vpn/tor

This is in the reserved dynamic range.

Also I'm sure Michael would love to see a patch, so he could complain
that you're unnecessarily setting a home directory.

--
Best regards,
Michał Górny


signature.asc (631 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Anthony G. Basile
In reply to this post by Anthony G. Basile
On 11/27/19 11:52 AM, Anthony G. Basile wrote:
>
> 1) uid/gid = 70/70 for net-dns/avahi
>

Actually I need to expand this for avahi.  I need a netdev group and
avahi-autoipd user/group.  So, in addition to the above, I'm also requesting

netdev gid = 479

avahi-autoipd uid/gid = 170/170


The avahi-autoipd values were obtained from fedora.  The netdev was
obtained from the highest available gid below 500.

--
Anthony G. Basile, Ph.D.
Gentoo Linux Developer [Hardened]
E-Mail    : [hidden email]
GnuPG FP  : 1FED FAD9 D82C 52A5 3BAB  DC79 9384 FA6E F52D 4BBA
GnuPG ID  : F52D4BBA

Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Joonas Niilola
In reply to this post by Anthony G. Basile
Hey,


On 11/27/19 6:52 PM, Anthony G. Basile wrote:
> 3) uid/gid = 485/485 for net-misc/stunnel
>
> Both avahi and tor follow fedora.  The values for stunnel were the
> highest available values below 500.
>
485 has been requested for bedrock though.

https://gitweb.gentoo.org/data/api.git/tree/files/uid-gid.txt


-- juippis



signature.asc (655 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re[2]: [gentoo-dev] RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Conrad Kostecki
In reply to this post by Anthony G. Basile
Hi!

Am 27.11.2019 19:02:06, "Anthony G. Basile" <[hidden email]>
schrieb:

>netdev gid = 479
Already requested by me for OpenRCT2 :-)

Conrad


Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Anthony G. Basile
In reply to this post by Joonas Niilola
On 11/27/19 1:04 PM, Joonas Niilola wrote:

> Hey,
>
>
> On 11/27/19 6:52 PM, Anthony G. Basile wrote:
>> 3) uid/gid = 485/485 for net-misc/stunnel
>>
>> Both avahi and tor follow fedora.  The values for stunnel were the
>> highest available values below 500.
>>
> 485 has been requested for bedrock though.
>
> https://gitweb.gentoo.org/data/api.git/tree/files/uid-gid.txt
>
>
> -- juippis
>
>

Thanks.  I didn't know about that list.  I'm going to have to update my
numbers.

--
Anthony G. Basile, Ph.D.
Gentoo Linux Developer [Hardened]
E-Mail    : [hidden email]
GnuPG FP  : 1FED FAD9 D82C 52A5 3BAB  DC79 9384 FA6E F52D 4BBA
GnuPG ID  : F52D4BBA

Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Anthony G. Basile
In reply to this post by Anthony G. Basile
On 11/27/19 11:52 AM, Anthony G. Basile wrote:

> Hi everyone,
>
> I'm requesting
>
> 1) uid/gid = 70/70 for net-dns/avahi
>
> 2) uid/gid = 997/995 for net-vpn/tor
>
> 3) uid/gid = 485/485 for net-misc/stunnel
>
> Both avahi and tor follow fedora.  The values for stunnel were the
> highest available values below 500.
>

Sorry but I didn't know about the list of already requested numbers at

   https://gitweb.gentoo.org/data/api.git/tree/files/uid-gid.txt

So I need to revise the above request.  Here's my new numbers:

1) For net-dns/avahi

avahi uid = 61
avahi gid = 61

avahi-autoipd uid = 62
avahi-autoipd gid = 62

netdev gid = 64


2) For net-vpn/tor

tor uid = 493
tor gid = 493


3) For net-misc/stunnel

stunnel uid = 478
stunnel gid = 478



Anthony G. Basile, Ph.D.
Gentoo Linux Developer [Hardened]
E-Mail    : [hidden email]
GnuPG FP  : 1FED FAD9 D82C 52A5 3BAB  DC79 9384 FA6E F52D 4BBA
GnuPG ID  : F52D4BBA

Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Ulrich Mueller-2
>>>>> On Wed, 27 Nov 2019, Anthony G Basile wrote:

> 2) For net-vpn/tor

> tor uid = 493
> tor gid = 493

We had skipped allocation for 492 and 493, because they're used for
oprofile and oidentd in Archlinux, and we have these packages too.

I'd suggest UID and GID 43 for tor (following Archlinux).

Ulrich

signature.asc (497 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Anthony G. Basile
On 11/27/19 1:47 PM, Ulrich Mueller wrote:
>>>>>> On Wed, 27 Nov 2019, Anthony G Basile wrote:
>
>
> I'd suggest UID and GID 43 for tor (following Archlinux).
>
> Ulrich
>

Thanks Ulrich.  Works for me.

--
Anthony G. Basile, Ph.D.
Gentoo Linux Developer [Hardened]
E-Mail    : [hidden email]
GnuPG FP  : 1FED FAD9 D82C 52A5 3BAB  DC79 9384 FA6E F52D 4BBA
GnuPG ID  : F52D4BBA

Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Michael Orlitzky
In reply to this post by Michał Górny-5
On 11/27/19 11:57 AM, Michał Górny wrote:
>
> Also I'm sure Michael would love to see a patch, so he could complain
> that you're unnecessarily setting a home directory.
>

Ha! ...but seriously though.

Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Joonas Niilola
In reply to this post by Anthony G. Basile


On 11/27/19 8:21 PM, Anthony G. Basile wrote:


3) For net-misc/stunnel

stunnel uid = 478
stunnel gid = 478


I just noticed Tomáš Mózes (hydrapolic) had requested 478 UID+GID for graylog in 21 Nov. I've just merged it.

Come on people, ctrl+fing your ID in your mail client for the gentoo-dev ML shows pretty fast if it's been requested or not. Ideally we'd update uid-gid.txt for every request, but not everyone has commit access / interest for that...


-- juippis


signature.asc (655 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Michael 'veremitz' Everitt
On 02/12/19 06:23, Joonas Niilola wrote:


On 11/27/19 8:21 PM, Anthony G. Basile wrote:

3) For net-misc/stunnel

stunnel uid = 478
stunnel gid = 478


I just noticed Tomáš Mózes (hydrapolic) had requested 478 UID+GID for graylog in 21 Nov. I've just merged it.

Come on people, ctrl+fing your ID in your mail client for the gentoo-dev ML shows pretty fast if it's been requested or not. Ideally we'd update uid-gid.txt for every request, but not everyone has commit access / interest for that...


-- juippis

surely if you have commit access to gentoo.git you can update uid-gid.txt ? how hard can it be?! </rhetorical questions>

signature.asc (817 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: RFC acct-{user,group} for net-dns/avahi, net-vpn/tor, net-misc/stunnel

Michał Górny-5
In reply to this post by Joonas Niilola
On Mon, 2019-12-02 at 08:23 +0200, Joonas Niilola wrote:

> On 11/27/19 8:21 PM, Anthony G. Basile wrote:
> >
> > 3) For net-misc/stunnel
> >
> > stunnel uid = 478
> > stunnel gid = 478
> >
> >
> I just noticed Tomáš Mózes (hydrapolic) had requested 478 UID+GID for
> graylog in 21 Nov. I've just merged it.
>
> Come on people, ctrl+fing your ID in your mail client for the gentoo-dev
> ML shows pretty fast if it's been requested or not. Ideally we'd update
> uid-gid.txt for every request, but not everyone has commit access /
> interest for that...
>
We need to create GUGA to give people UIDs and GIDs ;-).

[Gentoo UID/GID Authority]

--
Best regards,
Michał Górny


signature.asc (631 bytes) Download Attachment