On Sat, 17 Aug 2019 10:35:29 +0200 Ulrich Mueller <[email protected]> wrote:
> For example, "nobody" lives in /var/empty but cannot write to it, and > that dir is owned by root. What ensures that the permissions on /var/empty are correct for this scenario? Possibly having acct-* create a /var/lib/nobody or a /var/lib/ssh (or similar) _and_ ensure the no-write permissions are correct could be a feature? Maybe this needs to be a feature or something in the eclass? > ACCT_HOME_NOWRITE=1 * eclass decides what HOME should be (maybe just /var/empty, /var/lib/nobody or, say, /var/lib/no-write/nobody) * eclass ensures -w for u,g,o
pgpjCyLBlB1H6.pgp
Description: OpenPGP digital signature
