Actually its pam....unless IPA is as well.

Which makes sense then to have an application run < 500 so inherently it cannot 
be logged into via ssh....

regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: Stephen Gallagher [sgall...@redhat.com]
Sent: Thursday, 19 July 2012 12:42 p.m.
To: Steven Jones
Cc: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] IPA and UIDS <500

On Thu, 2012-07-19 at 00:02 +0000, Steven Jones wrote:
> Hi,
>
> Is there a rule or something that makes users with a UID of less than
> 500 not work?


Yes, on Red Hat and older Fedora systems, UIDs below 500 are reserved
for system services such as the apache user.

On newer Fedora systems (and most other distributions such as Debian and
Ubuntu), the reserved range has been increased to 1000.

So it's never safe to use an ID below those values. (And as a general
rule, it's best to keep your network IDs above 10,000 to avoid conflicts
with local user accounts as well).


_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to