Am 17.02.21 um 18:27 schrieb Eric Desrochers:
It may have some effect in certain corner cases. One I have in mind is CIS hardening benchmark which provides prescriptive guidance for establishing a secure IT Infrastructure, with specific requirement related to home directory.
Sorry, I don't understand how this is a problem.
I don't see why systemd-coredump user would be implicitly created, unless it is necessary without its corresponding binary package, systemd-coredump, installed.
As said, it is shipped in a single sysusers file and I don't really think it's worth splitting up that file. We create a lot of "basic" system users/groups in base-passwd which aren't necessarily used either.
We could remove the explicit adduser/addgroup calls from systemd and its subpackages and simply call
systemd-sysusers /usr/lib/sysusers.d/systemd.confso those systemd users/groups are setup in one place and we don't duplicate the information. Dunno.
Michael
OpenPGP_signature
Description: OpenPGP digital signature
