Bug 164160

Summary: first boot uses "useradd" rather than "luseradd"
Product: [Fedora] Fedora Reporter: Gene Czarcinski <gczarcinski>
Component: firstbootAssignee: Chris Lumens <clumens>
Status: CLOSED RAWHIDE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 4CC: mitr
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2005-08-02 20:13:19 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Gene Czarcinski 2005-07-25 14:55:08 UTC 
Description of problem:

Firstboot currently uses "useradd" (from shadow-utils) to create the "initial"
user.  This results in a home directory with 755 permissions -- this is a
security problem.

The system-config-users gui interface for creating users uses the luseradd
program from the libuser package.  This results in a home directory with 700
permissions -- much better from a security perspective.

Using luseradd would also fix the selinux attributes to be consistent.
Comment 1 Jack Aboutboul 2005-07-25 15:00:06 UTC 
*** Bug 164161 has been marked as a duplicate of this bug. ***
Comment 2 Jack Aboutboul 2005-07-25 15:00:38 UTC 
*** Bug 164162 has been marked as a duplicate of this bug. ***