Re: forget upgrade, what to save and blend with new install

[Ralph Shumaker]

Ralph Shumaker wrote:

DJA wrote:
Ralph Shumaker wrote:

DJA wrote:

4) *DO NOT* create any user accounts from within the FC installer 
unless
   you don't mind UID/GID pairs based on some goof ball Redhat lunacy
   (IMHO). This is especially true if you are preserving /home and any
   apps owned by non-system, non-root users.

   Any user you create from within the installer (and also with
   System-config-user) will create a UID of n and a GID of n+1, 
starting
   with UID=501. So the UID/GID list will start 501/502, 503/504,
   505/506, etc. Maybe there is some esoteric or security reason for
   this, but I like my UID/GID pairs to match e.g. 506/506.

   If you create users from within the installer (i.e. using the GUI),
   you are given no control over either UID/GID or home directory
   locations or names. It's a PITA to fix this after the installation,
   especially if the user has already logged in, and even worse if 
that
   user has run X. In fact, you have to be careful in creating users
   in System-config-users also, because its defaults make the same 
mess.

   Use the CLI tool to create the users and groups, and then the GUI
   tool to maintain them if you like. If you use the GUI tool to 
create
   new users, make sure you create their group first or you might not
   get what you want, and the GUI tool won't let you remove or 
rename a
   group unless you first remove its users. Also the GUI tool doesn't
   handle passwords as flexibly.



I created them from the graphical interface (not during the install, 
except for maybe the user that was 501 on the old installation).  
Before creating *any* of the users on the new install, I noted from 
the old install all the user and group info from the users and 
groups gui.  I had no trouble creating the same sets on the new 
install.  I did not create groups.  It automatically created the 
groups (correctly) when I created the users.  But, maybe this 
process was helped by my having copied /home before doing this.  
Actually, I do not recall when I copied /home, whether before or 
after.  I knew each user's password, so I don't remember if I 
entered this information when setting up the users or if it didn't 
even ask me.



But have you looked at what the corresponding GID actually is for a 
given user created with the GUI tool? I prefer the UID and GID 
(numerical values) to match.

what does

$ ls -lan /home/

show?



I'm not around that PC. 


Oh, I just realized that I can mount the copy that I have and look at 
the UID and GID.

[EMAIL PROTECTED] other]# ls -lan home/
total 32
drwxr-xr-x    7 0        0            4096 Aug 12  2004 .
drwxr-xr-x   24 0        0            4096 Oct  4 19:53 ..
drwx------   53 502      502          8192 Nov 13 11:11 evita
drwx------    2 0        0            4096 Jan 11  2004 lost+found
drwx------   45 501      501          4096 Oct  4 19:41 luis
drwx------   44 500      500          4096 Oct  4 17:55 mita
drwx------   37 503      503          4096 Oct  4 19:53 sysop
[EMAIL PROTECTED] other]#

And I set up each one of those using the GUI from the main menu (in 
fc3).  Then I copied over the top of fc3's /home from the backup I made 
of rh9's /home which I also set up using the GUI from the main menu (in 
rh9).  Before I set up the users in fc3, I used the GUI from the main 
menu in rh9 to verify the UID's and GID's so that I could set them up in 
the same sequence in fc3 (which I then did).


                                       But I did confirm that both the 
files owner and group displayed correctly in each user's home 
directory.  Just looking on my own PC here, where I used the GUI tool 
to set up the users, the first user "rafael" has matching UID and GID 
(500).  The second user has matching also (501).  After that, I set up 
a special group (502).  In hindsight, I probably should have set it up 
with an unusually high GID.  But I didn't.  Much, much later (very 
recently), I added a third user.  He got UID 502 and GID 503, but only 
because they each were the next in line respectively.

I just played with it.  It looks like the GUI tool allows me to 
manually set either UID *or* GID as low as 500 to higher than 
1,000,000,000.  I didn't actually tell it to do it.  But the up arrow 
in the box didn't cap out as far as I cared to run it up.

04:47:55 $ ls -lan /home/
total 20
drwxr-xr-x    5 0        0            4096 Oct 27 09:58 .
drwxr-xr-x   24 1000     0            4096 Nov 12 20:42 ..
drwx------   19 501      501          4096 Jan 13  2005 dick
drwx------   21 502      503          4096 Nov 12 02:19 gvl
drwx------   52 500      500          4096 Nov 15 04:35 rafael

04:48:05 $



--
KPLUG-List@kernel-panic.org
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list