Bug 153310

Summary: /etc/login.defs GID_MIN is not used by useradd
Product: [openSUSE] SUSE LINUX 10.0 Reporter: Morten Bjoernsvik <morten.bjornsvik>
Component: BasesystemAssignee: Thorsten Kukuk <kukuk>
Status: RESOLVED INVALID QA Contact: E-mail List <qa-bugs>
Severity: Minor    
Priority: P5 - None    
Version: Stable Snapshot 2   
Target Milestone: ---   
Hardware: All   
OS: SuSE Linux 10.0   
Whiteboard:
Found By: Corporate Interoperability Test Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Morten Bjoernsvik 2006-02-24 09:25:49 UTC 
Why has group users GID=100
It should be atleast 1000 according to GID_MIN in logindefs.
Please fix, I'm porting our app to SUSE from RHEL

scpdev:~ # useradd mbj
scpdev:~ # id mbj
uid=1001(mbj) gid=100(users) groups=100(users),16(dialout),33(video)

The redhat-way is better a separate group for each user:
scpdev:~ # userdel mbj
no crontab for mbj
scpdev:~ # useradd mbj -g mbj
scpdev:~ # id mbj
uid=1001(mbj) gid=1000(mbj) groups=1000(mbj),16(dialout),33(video)


excerp from /etc/login.defs
#
# Min/max values for automatic uid selection in useradd
#
# SYSTEM_UID_MIN to SYSTEM_UID_MAX inclusive is the range for
# UIDs for dynamically allocated administrative and system accounts.
# UID_MIN to UID_MAX inclusive is the range of UIDs of dynamically
# allocated user accounts.
#
SYSTEM_UID_MIN            100
SYSTEM_UID_MAX            499
UID_MIN                  1000
UID_MAX                 60000

#
# Min/max values for automatic gid selection in groupadd
#
# SYSTEM_GID_MIN to SYSTEM_GID_MAX inclusive is the range for
# GIDs for dynamically allocated administrative and system groups.
# GID_MIN to GID_MAX inclusive is the range of GIDs of dynamically
# allocated groups.
#
SYSTEM_GID_MIN            100
SYSTEM_GID_MAX            499
GID_MIN                  1000
GID_MAX                 60000
Comment 1 Michael Gross 2006-02-24 13:11:38 UTC 
> The redhat-way is better a separate group for each user

The standard for SUSE always was to have _one_ user-group. IMO creating one group for each user makes no sense, however this is a matter of opionion. We should not change that.

The variables
SYSTEM_GID_MIN            100
UID_MIN                  1000

are used correctly for your example: 
scpdev:~ # id mbj
uid=1001(mbj) gid=100(users) groups=100(users),16(dialout),33(video)

UID is 1001 >= 1000 and GID is 100 >= 100

So I fail to see the problem at the moment.
Comment 2 Morten Bjoernsvik 2006-02-24 14:05:16 UTC 
Hi
So it means that users are qualified as a system group.
I failed to see that. I was used to the redhat way.

Sorry for bugging you
Comment 3 Michael Gross 2006-02-27 09:08:46 UTC 
Thorsten: Please decide this.
Comment 4 Thorsten Kukuk 2006-02-27 09:11:04 UTC 
There is nothing to decide, your comment #1 is correct.