On Fri, Apr 17, 2015 at 7:51 AM, Lennart Poettering <lenn...@poettering.net> wrote:
> Groups *suck* as authentication scheme. If you add one group for each > privilege you want, then you'll have a huge number of groups, and > that's hardly desirable. It's pretty close to being unmanagable with > user/group editors. Also, you can never take group membership away, > since users who once where members of group can create sgid binaries > which allows them to always return into that group forever. Not to mention, we are running out of system users and groups in distributions (if we didn't already) and some people want us to provide fixed UID/GID system users across distributions for clustering applications...this is a totally unworkable way forward. _______________________________________________ systemd-devel mailing list systemd-devel@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/systemd-devel