This is just good SA practice and has been recommended by LISA for better than ten years. (LISA is the Usenix Large Installation Systems Administration conference/SIG.)
There are a lot of reasons this is good, but one basic one is that you often want things to *not* be owned by any group member, but be accessible to the group. Another factor is that this allows easier assignment of group and user IDs, since you just set the two to be the same for each user, and then assign membership through /etc/groups. You can either set the group user ID to be no login (shell=/bin/false), or allow logins in case you want to allow a true group administrator account. It's a good thing. I wish Red Hat (and/or E-smith) would pay more attention to the right way to do things. The LISA folks have a lot of "best practices" type info that really should be built directly into modern OSes. Dub Charlie Brady wrote: > On Tue, 28 May 2002, Dennis Evers wrote: > > > I noticed that for every group created through the server-manager both a > > userid and a group are created on the unix. > > That's standard redHat behaviour. > > > Can anybody explain to me why a user account is created for a group? > > Check the RedHat manuals under user-private groups: > > >http://www.redhat.com/docs/manuals/linux/RHL-7-Manual/ref-guide/s1-sysadmin-usr-grps.html > > -- > Charlie Brady [EMAIL PROTECTED] > Lead Product Developer > Network Server Solutions Group http://www.e-smith.com/ > Mitel Networks Corporation http://www.mitel.com/ > Phone: +1 (613) 592 5660 or 592 2122 Fax: +1 (613) 592 1175 > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
