On Thu, Jan 18, 2024 at 05:38:37AM -0000, David Chmelik wrote: > Couldn't Debian standardize uid:gid numbers for daemons?
The thing is, Debian has tens of thousands of packages, and any one of these packages is capable of creating new UIDs and/or GIDs if it feels like doing so. There is no centralized place where all of the possible UIDs and GIDs are registered. It's all ad hoc. If a centralized UID/GID registry were to be created, the following results would occur: * Every package that creates one would have to be updated in a non-trivial manner. By its maintainer. Thousands of separate maintainers. A cat-herd of Debian developers, who do this work in their spare time, as they get around to it. * Every obscure, niche package's users and groups would have to be added to every Debian system. I don't even think we *know* how many this would be. Hundreds? Thousands? Do you want a thousand new system users to be created in your /etc/passwd file? Your local UIDs beginning with 1000 might be overwritten. They might have to be rebased to start at 3000, or 5000. Would that be high enough? Would it be future-proof? * Did I mention that every Debian system in existence would have to have ALL of its users and groups redone? Yeah. Just imagine that for a moment. Every Debian system on the entire planet. Every file system on every Debian system. Even remote non-Debian NFS servers. iSCSI servers. Other remote file systems I'm not even aware of. * This change would have to be made by a human being running a conversion script as root in single-user mode, because it would break EVERYTHING that happens to be running at the time. Or single-user mode plus NFS, iSCSI, etc. So that you can update all the remote file systems. While in single-user mode. If such a thing is even possible. This is one of those "the boat has already left the dock" situations. If this were going to happen, it would have to have happened in the early 1990s. There is no feasible way to make it happen now.