2008-07-29 21:18:53 |
ceg |
bug |
|
|
added bug |
2008-07-29 22:19:03 |
Steve Langasek |
pam: status |
New |
Invalid |
|
2009-11-25 12:00:16 |
ceg |
pam (Ubuntu): status |
Invalid |
New |
|
2009-11-26 05:46:37 |
Steve Langasek |
pam (Ubuntu): status |
New |
Invalid |
|
2009-11-26 10:59:56 |
ceg |
description |
Ubuntu uses private user groups.
In order for the users to belong be added to the users group by default /etc/security/groups needs to contain a line like this one:
*; *; *; Al0000-2400; users
(Context is also Bug #252351) |
Ubuntu uses private user groups.
In order for the users to belong be added to the users group by default two solutions exist.
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) change group membership off all existing users manually/scripted and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because the users group has not been used in the past.
The users group is generally used as a group refering to all users to make the user private group scheme work as designed.
(Context is https://wiki.ubuntu.com/MultiUserManagement) |
|
2009-11-26 11:02:15 |
ceg |
pam (Ubuntu): status |
Invalid |
New |
|
2009-11-26 11:04:25 |
ceg |
description |
Ubuntu uses private user groups.
In order for the users to belong be added to the users group by default two solutions exist.
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) change group membership off all existing users manually/scripted and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because the users group has not been used in the past.
The users group is generally used as a group refering to all users to make the user private group scheme work as designed.
(Context is https://wiki.ubuntu.com/MultiUserManagement) |
Ubuntu uses private user groups.
In order for the users to belong to the users group by default two solutions exist.
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) change group membership off all existing users manually/scripted and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because the users group has not been used in the past.
The users group is generally used as a group refering to all users to make the user private group scheme work as designed.
(Context of this bugreport is https://wiki.ubuntu.com/MultiUserManagement) |
|
2009-11-27 05:00:47 |
Steve Langasek |
pam (Ubuntu): status |
New |
Invalid |
|
2009-11-27 13:08:55 |
ceg |
description |
Ubuntu uses private user groups.
In order for the users to belong to the users group by default two solutions exist.
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) change group membership off all existing users manually/scripted and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because the users group has not been used in the past.
The users group is generally used as a group refering to all users to make the user private group scheme work as designed.
(Context of this bugreport is https://wiki.ubuntu.com/MultiUserManagement) |
Current behaviour is:
The "users" group exists but when setting up a (set group ID) groupdirectory (i.e. /home/group/users) it does not work as expected, because the users group is not populated (empty).
Changed behaviour would be:
Users are added to the users group also when the (private) USERGROUP scheme is used, and a created users groupdir is functional.
In order for the users to belong to the users group by default two solutions exist.
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) change group membership off all existing users manually/scripted and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because no files belonging to users group are created by default and at the same time users is applied as the primary group to users when disableing (private) USERGROUPS in /etc/adduser.conf.
The users group is generally used as a group refering to all users and makes the user private group scheme work as designed.
(Context of this issue is https://wiki.ubuntu.com/MultiUserManagement) |
|
2009-11-27 13:16:39 |
ceg |
affects |
pam (Ubuntu) |
gnome-system-tools (Ubuntu) |
|
2009-11-27 13:16:39 |
ceg |
gnome-system-tools (Ubuntu): status |
Invalid |
New |
|
2009-11-27 13:18:26 |
ceg |
description |
Current behaviour is:
The "users" group exists but when setting up a (set group ID) groupdirectory (i.e. /home/group/users) it does not work as expected, because the users group is not populated (empty).
Changed behaviour would be:
Users are added to the users group also when the (private) USERGROUP scheme is used, and a created users groupdir is functional.
In order for the users to belong to the users group by default two solutions exist.
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) change group membership off all existing users manually/scripted and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because no files belonging to users group are created by default and at the same time users is applied as the primary group to users when disableing (private) USERGROUPS in /etc/adduser.conf.
The users group is generally used as a group refering to all users and makes the user private group scheme work as designed.
(Context of this issue is https://wiki.ubuntu.com/MultiUserManagement) |
Current behaviour is:
The "users" group exists but when setting up a (set group ID) groupdirectory (i.e. /home/group/users) it does not work as expected, because the users group is not populated (empty).
Changed behaviour would be:
Users are added to the users group also when the (private) USERGROUP scheme is used, and a created users groupdir is functional.
In order for all (regular/login) users to belong to the users group by default two solutions exist.
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) change group membership off all existing users manually/scripted and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because no files belonging to users group are created by default and at the same time users is applied as the primary group to users when disableing (private) USERGROUPS in /etc/adduser.conf.
The users group is generally used as a group refering to all users and makes the user private group scheme work as designed.
(Context of this issue is https://wiki.ubuntu.com/MultiUserManagement) |
|
2009-11-28 10:56:05 |
Milan Bouchet-Valat |
affects |
gnome-system-tools (Ubuntu) |
adduser (Ubuntu) |
|
2009-11-28 10:56:20 |
Milan Bouchet-Valat |
adduser (Ubuntu): importance |
Undecided |
Wishlist |
|
2010-03-26 19:09:05 |
ceg |
description |
Current behaviour is:
The "users" group exists but when setting up a (set group ID) groupdirectory (i.e. /home/group/users) it does not work as expected, because the users group is not populated (empty).
Changed behaviour would be:
Users are added to the users group also when the (private) USERGROUP scheme is used, and a created users groupdir is functional.
In order for all (regular/login) users to belong to the users group by default two solutions exist.
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) change group membership off all existing users manually/scripted and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because no files belonging to users group are created by default and at the same time users is applied as the primary group to users when disableing (private) USERGROUPS in /etc/adduser.conf.
The users group is generally used as a group refering to all users and makes the user private group scheme work as designed.
(Context of this issue is https://wiki.ubuntu.com/MultiUserManagement) |
Current behaviour is:
The "users" group exists but is not populated (empty). When setting up a (set group ID) group directory (i.e. /home/group/users) users can not collaborate on files in that directory.
Changed behaviour would be:
Users are added to the "users" group just as well when the default (private) USERGROUP scheme is used, so that group directories for "users" are functional.
In order for all (regular/login) users to belong to the users group by default two solutions exist:
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) add all existing users manually/scripted to the users group and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because no files belonging to the users group are created by default and at the same time users is applied as the primary group to users when (private) USERGROUPS are disabled in /etc/adduser.conf.
The users group is generally used as a group refering to all users, and it makes the user private group scheme work as designed.
(this issue is filed in the context of https://wiki.ubuntu.com/MultiUserManagement )
|
|
2010-03-26 19:09:39 |
ceg |
summary |
users not belonging to users group |
users are not added to "users" group |
|
2010-03-26 19:34:09 |
ceg |
description |
Current behaviour is:
The "users" group exists but is not populated (empty). When setting up a (set group ID) group directory (i.e. /home/group/users) users can not collaborate on files in that directory.
Changed behaviour would be:
Users are added to the "users" group just as well when the default (private) USERGROUP scheme is used, so that group directories for "users" are functional.
In order for all (regular/login) users to belong to the users group by default two solutions exist:
1)
centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2) add all existing users manually/scripted to the users group and modifying adduser defaults for new users to have them added to the users group.
There should be no security risk involved, because no files belonging to the users group are created by default and at the same time users is applied as the primary group to users when (private) USERGROUPS are disabled in /etc/adduser.conf.
The users group is generally used as a group refering to all users, and it makes the user private group scheme work as designed.
(this issue is filed in the context of https://wiki.ubuntu.com/MultiUserManagement )
|
This is broken behavior (bug not wish).
Current behaviour is:
The "users" group exists but is not populated (empty). When setting up a (set group ID) group directory (i.e. /home/group/users) users can not collaborate on files in that directory.
(This was originally broken because gnome-system-tools introduced its own user profiles without using adduser profiles (different config files) and disabling the EXTRA_GROUPS in adduser.conf alltogether instead of leaving the "users" group untouched.)
Changed (repaired) behaviour would be:
Users are added to the "users" group just as well when the default (private) USERGROUP scheme is used, so that group directories for "users" are functional again.
Two solutions exist to have all (regular/login) users to belong to the users group by default again:
1)
Centrally add one line to /etc/security/group.conf (for dynamic addition to the group during login):
*; *; *; Al0000-2400; users
2)
Add all existing users (according to adduser.conf: FIRST_UID / LAST_UID) manually/scripted to the users group and setting EXTRA_GROUPS="users" in adduser.conf for new users.
There should be no security risk involved, because no files belonging to the users group are created by default and at the same time users is applied as the primary group to users when (private) USERGROUPS are disabled in /etc/adduser.conf.
The users group is generally used as a group refering to all users, and it makes the user private group scheme work as designed.
(this issue is filed in the context of https://wiki.ubuntu.com/MultiUserManagement )
|
|
2010-03-26 19:34:17 |
ceg |
nominated for series |
|
Ubuntu Lucid |
|
2010-03-26 20:41:43 |
ceg |
attachment added |
|
re-enable-EXTRA_GROUPS-users.patch http://launchpadlibrarian.net/42099389/re-enable-EXTRA_GROUPS-users.patch |
|
2010-03-26 20:48:25 |
ceg |
marked as duplicate |
|
549117 |
|
2013-01-14 14:04:10 |
ceg |
tags |
|
patch |
|