Your message dated Wed, 28 May 2014 21:35:23 +0000 with message-id <[email protected]> and subject line Bug#749619: fixed in firebird2.5 2.5.2.26540.ds4-13 has caused the Debian Bug report #749619, regarding upgrading libreoffice creates a new "firebird" system user to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 749619: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=749619 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: firebird2.5-server-common Version: 2.5.2.26540.ds4-12 Severity: normal There's a fairly complicated set of package relationships here, so bear with me. The root bug that I'm reporting is that I just upgraded libreoffice on a Debian jessie system and ended up with a new "firebird" system user. I found that behavior surprising, since having an office suite installed doesn't seem like it should create new users on my system. (The firebird user also had a valid shell, which creates a variety of other potential issues around security interactions with possible site-local users with the same username. It turns out that the Stanford user with that username has left the university and the account is currently inactive, but....) The user is created through the following dependency chain: libreoffice -> libreoffice-base libreoffice-base -> libreoffice-base-drivers libreoffice-base-drivers recommends libreoffice-sdbc-firebird (I'm not sure why this relationship, but I'm far from an expert on the internals of Libreoffice or the backwards compatibility constraints here.) libreoffice-sdbc-firebird -> libfbembed2.5 libfbembed2.5 -> firebird2.5-server-common I understand that libfbembed2.5 is both a client and a server, and I suspect that it needs some of the other server files. However, does it need the system user? This would moderately surprise me; a userspace library generally can't make meaningful use of system users anyway. I suspect that the system user creation is only required by the actual database server, but libfbembed2.5 needs some other file provided by the same package. I'm not sure the best place to fix this chain of events, but I don't think creating a firebird system user for every person who installs libreoffice without disabling Recommends is the correct course of action. Maybe the individual Firebird server packages can take ownership of the system user? Or the files libfbembed2.5 need can be separated from the rest of the server-common package, particularly the user creation part? I realize that system users tend to get created for somewhat random reasons, and this bug is right on the border between normal and minor. The fact that it had a valid shell and is therefore a minor security risk was the thing that pushed it into a normal bug for me, but the severity is arguable. Regardless of whether this is avoidable behavior, I would at least recommend creating the firebird user with a shell of /usr/sbin/nologin and using the appropriate flags to any invocations of su. -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 3.13-1-686-pae (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages firebird2.5-server-common depends on: ii adduser 3.113+nmu3 ii firebird2.5-common-doc 2.5.2.26540.ds4-12 ii libc6 2.18-7 ii libfbclient2 2.5.2.26540.ds4-12 ii libgcc1 1:4.9.0-4 ii libicu52 52.1-3 ii libstdc++6 4.9.0-4 firebird2.5-server-common recommends no packages. firebird2.5-server-common suggests no packages.
--- End Message ---
--- Begin Message ---Source: firebird2.5 Source-Version: 2.5.2.26540.ds4-13 We believe that the bug you reported is fixed in the latest version of firebird2.5, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Damyan Ivanov <[email protected]> (supplier of updated firebird2.5 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 28 May 2014 23:03:31 +0300 Source: firebird2.5 Binary: firebird2.5-super firebird2.5-classic firebird2.5-superclassic libfbclient2 libfbembed2.5 libib-util firebird2.5-common firebird2.5-server-common firebird2.5-classic-common firebird-dev firebird2.5-examples firebird2.5-doc firebird2.5-common-doc firebird2.5-super-dbg firebird2.5-classic-dbg libfbclient2-dbg Architecture: source all amd64 Version: 2.5.2.26540.ds4-13 Distribution: unstable Urgency: medium Maintainer: Debian Firebird Group <[email protected]> Changed-By: Damyan Ivanov <[email protected]> Description: firebird-dev - Development files for Firebird - an RDBMS based on InterBase 6.0 firebird2.5-classic - Firebird Classic Server - an RDBMS based on InterBase 6.0 code firebird2.5-classic-common - common files for firebird 2.5 "classic" and "superclassic" firebird2.5-classic-dbg - collected debug symbols for firebird2.5-classic and -superclassic firebird2.5-common - common files for firebird 2.5 servers and clients firebird2.5-common-doc - copyright, licensing and changelogs of firebird2.5 firebird2.5-doc - Documentation files for firebird database version 2.5 firebird2.5-examples - Examples for Firebird - an RDBMS based on InterBase 6.0 code firebird2.5-server-common - common files for firebird 2.5 servers firebird2.5-super - Firebird Super Server - an RDBMS based on InterBase 6.0 code firebird2.5-super-dbg - collected debug symbols for firebird2.5-super firebird2.5-superclassic - Firebird SuperClassic Server - an RDBMS based on InterBase 6.0 co libfbclient2 - Firebird client library libfbclient2-dbg - collected debug symbols for libfbclient2 libfbembed2.5 - Firebird embedded client/server library libib-util - Firebird UDF support library Closes: 749619 Changes: firebird2.5 (2.5.2.26540.ds4-13) unstable; urgency=medium . * -server-sommon.postinst: drop the --shell option when invoking adduser * move firebird account creation implementation from -server-common.postinst to functions.sh * move creation of firebird user from -server-common.postinst to individual server packages Closes: #749619 -- upgrading libreoffice creates a new "firebird" system user. Thanks to Russ Allbery for the detailed bug report. Checksums-Sha1: ecba50c11c37dd1270209a64c2ef4e1cd7bbc0a6 3279 firebird2.5_2.5.2.26540.ds4-13.dsc 2ac844cf8247693a69a6e930da66822a38d85b9e 118976 firebird2.5_2.5.2.26540.ds4-13.debian.tar.xz 9b16f25a907d98a88cdf1bc80a251e530f6df6b9 95980 firebird2.5-common_2.5.2.26540.ds4-13_all.deb 1a152f1f840f17fb399585dab3c3b1d7bab6f58d 164530 firebird2.5-examples_2.5.2.26540.ds4-13_all.deb cdbb8500262a12a506283c2ed367c815d4f6a37a 171232 firebird2.5-doc_2.5.2.26540.ds4-13_all.deb 8283843c72861de09c500da4fef4b678c252e3e1 640184 firebird2.5-common-doc_2.5.2.26540.ds4-13_all.deb ce6a178b200a6e2369ee2a97656021515a790587 2128776 firebird2.5-super_2.5.2.26540.ds4-13_amd64.deb 7737e67e10391b3f6bbb704319cdd785847be59c 28678 firebird2.5-classic_2.5.2.26540.ds4-13_amd64.deb fbaa497c6b6c1238b644f32d080f8910e1a224ca 179014 firebird2.5-superclassic_2.5.2.26540.ds4-13_amd64.deb db6095a8100dd68d8c7ba5d84f449d1cf54f466f 279370 libfbclient2_2.5.2.26540.ds4-13_amd64.deb ad1e5c244d1da945498e683dcb48d9b496fc8c20 1507430 libfbembed2.5_2.5.2.26540.ds4-13_amd64.deb bb000d078b992e3885b2164c5e8dca83f5a6bc96 3938 libib-util_2.5.2.26540.ds4-13_amd64.deb 3b8a5f8dc8a8d8eda6c09bef9f689f3e7b666efd 533548 firebird2.5-server-common_2.5.2.26540.ds4-13_amd64.deb 8605f8a2730c39ee70a4d936e78fc0a02d0cd7de 809016 firebird2.5-classic-common_2.5.2.26540.ds4-13_amd64.deb 8ddf8e1ecab068cd8e2f89e805fa6df50bc0ec94 31966 firebird-dev_2.5.2.26540.ds4-13_amd64.deb 89ec8f69639d311f92b97c0e3fac0db31d634173 27823602 firebird2.5-super-dbg_2.5.2.26540.ds4-13_amd64.deb 6a73493d2c862086f6c2f1a4ce990844b659916d 28927178 firebird2.5-classic-dbg_2.5.2.26540.ds4-13_amd64.deb c1723757bb02b1870e33fe6fb143f6954249271b 1854868 libfbclient2-dbg_2.5.2.26540.ds4-13_amd64.deb Checksums-Sha256: 449d3c65af510d0f7cdb9f45c97b9288e984b22d77f7d4c6ecb72c5d69418e77 3279 firebird2.5_2.5.2.26540.ds4-13.dsc ceb08564be9d9549536896aa1978e31ceb6e7810ada13d8505882e2039c42ab4 118976 firebird2.5_2.5.2.26540.ds4-13.debian.tar.xz c83c56c819409d6d5803d33dde4d31a3204a870675596f5518a102e8dcac734a 95980 firebird2.5-common_2.5.2.26540.ds4-13_all.deb c48990b77ea54cad1e69b4bc77076d2123f5505dab349632c85d58654c2b8c63 164530 firebird2.5-examples_2.5.2.26540.ds4-13_all.deb 3a2b9d035b6136607898aa12490cc6d228b235f7ca183348baf72ddca4ff5273 171232 firebird2.5-doc_2.5.2.26540.ds4-13_all.deb c7f13ac5845a9864e18d33f7a1dcd2581ed3264999374e8019dcb14d99322f43 640184 firebird2.5-common-doc_2.5.2.26540.ds4-13_all.deb ae66f9d0f7349b377c036fafd8312c058750a9500990110423de10a0d10d67ae 2128776 firebird2.5-super_2.5.2.26540.ds4-13_amd64.deb 1357f05e72d2b9d0afb9b52bf1e4561ebcd1023841f6eeb7a52bd01c94fd260c 28678 firebird2.5-classic_2.5.2.26540.ds4-13_amd64.deb 636dcd3dde1c0387d2bb7aff126b25b1ed4d274f79ef88b4c36348d6fc9e38b9 179014 firebird2.5-superclassic_2.5.2.26540.ds4-13_amd64.deb b92d5c9ab6f1514d5d2eea83b3d765f5257d42702850189bcf94479b84a71fca 279370 libfbclient2_2.5.2.26540.ds4-13_amd64.deb 09cd79c5a18906e738d6071ed77ab90a7780b02f31d1033290594678204f2686 1507430 libfbembed2.5_2.5.2.26540.ds4-13_amd64.deb f972f240cb936a12bf4f8c9f1701cb40fecaa051cb78662a1feb3c73131974ba 3938 libib-util_2.5.2.26540.ds4-13_amd64.deb f41f59b0c7baa8577c88c64abef3e3e097dac70bd257bc172c1c3c9c80c1a932 533548 firebird2.5-server-common_2.5.2.26540.ds4-13_amd64.deb ea21f13d75fb580b25fcb1be4242b93bb2cb977a712544c7722dc639f09feb6b 809016 firebird2.5-classic-common_2.5.2.26540.ds4-13_amd64.deb 5f1db3746723611aac47b1fc0c3584f37b9724cb53971e27a868a8084518c1cf 31966 firebird-dev_2.5.2.26540.ds4-13_amd64.deb 6e7e4974ced37eaff2a4f46800dc9071ea145bd1586d83373b324003c3e4db0d 27823602 firebird2.5-super-dbg_2.5.2.26540.ds4-13_amd64.deb ddd7017f4b22076344418f349f24d17e46c0950d80c9daf7cfaa349658c0b862 28927178 firebird2.5-classic-dbg_2.5.2.26540.ds4-13_amd64.deb 25d26180f0fd7a3cbb9f202f8d36f93d6a70dbd5ae745fc82942d23bea048379 1854868 libfbclient2-dbg_2.5.2.26540.ds4-13_amd64.deb Files: 483c30a7165a4df3dd6d869c28e2e14f 95980 database optional firebird2.5-common_2.5.2.26540.ds4-13_all.deb fce46e84924ef7b045d7a15bdf644df6 164530 doc optional firebird2.5-examples_2.5.2.26540.ds4-13_all.deb 7e956ee3c65fdbb67f3959d7315a1800 171232 doc optional firebird2.5-doc_2.5.2.26540.ds4-13_all.deb fe474c0881fa188d0b70c02bec2ffcd8 640184 doc optional firebird2.5-common-doc_2.5.2.26540.ds4-13_all.deb 31225e42e5b7ae826f96f89e416c6cdf 2128776 database optional firebird2.5-super_2.5.2.26540.ds4-13_amd64.deb bfa186b7fcab76860ad6dca54e7a9c12 28678 database optional firebird2.5-classic_2.5.2.26540.ds4-13_amd64.deb d5d4c7a1cc89a2d06ce3a94025715440 179014 database optional firebird2.5-superclassic_2.5.2.26540.ds4-13_amd64.deb ab56921338304126b32af0b353d7ea34 279370 libs optional libfbclient2_2.5.2.26540.ds4-13_amd64.deb aa1c34be3c4ce7b238107e2510a68819 1507430 libs optional libfbembed2.5_2.5.2.26540.ds4-13_amd64.deb ca0d58022a5c5727e397b7c8363d5f36 3938 libs optional libib-util_2.5.2.26540.ds4-13_amd64.deb 721111c86c5f29a4d14017e94736e68d 533548 database optional firebird2.5-server-common_2.5.2.26540.ds4-13_amd64.deb cb68a09db7f4acaf9377bdea0c897301 809016 database optional firebird2.5-classic-common_2.5.2.26540.ds4-13_amd64.deb 7ebf878894e8b5a7ef1321759aed805f 31966 libdevel optional firebird-dev_2.5.2.26540.ds4-13_amd64.deb cf38fd1a863d12de45a2d94cf16e46d0 27823602 debug extra firebird2.5-super-dbg_2.5.2.26540.ds4-13_amd64.deb d4c066d9be675c79d7662593165b5ab3 28927178 debug extra firebird2.5-classic-dbg_2.5.2.26540.ds4-13_amd64.deb d96f21e490f34843e25099930e58cb22 1854868 debug extra libfbclient2-dbg_2.5.2.26540.ds4-13_amd64.deb 300df5b876f6fdec90e64600cc5c3ef8 3279 database optional firebird2.5_2.5.2.26540.ds4-13.dsc 8e19690e2bea053957331e7b1094151d 118976 database optional firebird2.5_2.5.2.26540.ds4-13.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJThlKKAAoJENu+nU2Z0qAEScMP/2NrWNRXO+RkGZ0yhca9cy2a /1NPipMS1n2fYVnx4dQHPTAaXuJRDlwej94GCxOqbcAKDUzCHBxsgWX6HH5BLaVW cPI6Oxq7aSKSEdSyaQfHID7QnZkzQ6ATt2iW642IF9oHn7C5BmF0EXEUtp7YBN9H OvEcEJcubrXKX3muJJkaUO3HuKGGlLnw79jwH83VF6rrTTQ6REP7LtXEwPehdRWy KS+/ZJWUMNCAaJWZ42qnNAfix9oNyaTvzdejoM8DXJbmg3cSPsQD0Pc8b3xNLAPT gWEGNvYIzZEaVR8JPkjXFlp5qeKACXG3f+VzyZ8yBZqSp/fbZQPcNPkZFtQw204r iaw98xFZ2iAuQ3dVB77fqt6dqsC8m2mH+492F1JovHeib8mskuRu/t6ZX3hdHKuc sx5WOui69Ur8gkXHsLJsnpA64id9g/i0EyyLyWf0XXMlx8r6PruJ0TgVAm0sMP+z p4MlswVVZvQyJvT/ASOlZfX9OVu0ToyeZFONZULYar2SX9WCFktrXop+hfde48Kl IsFK7/3/CawqzOTA1/xez/4psuwqVtHCke8725uwX+TRv4UtMy717sSaVDWhc+JL aUQ3MmoyMzHO1I4g/HTMI1ebwot60yA+PGHlR6d/71AFV1R1JTxfyzvcwanIl6HX 69aTAswuyzUfPRdQR49G =kFiv -----END PGP SIGNATURE-----
--- End Message ---
