Bug 730242

Summary: cyrus sasl doesn't create uid/gid according to the setup package
Product: Red Hat Enterprise Linux 6 Reporter: Miroslav Vadkerti <mvadkert>
Component: cyrus-saslAssignee: Jan F. Chadima <jchadima>
Status: CLOSED ERRATA QA Contact: BaseOS QE Security Team <qe-baseos-security>
Severity: urgent Docs Contact:
Priority: medium    
Version: 6.1CC: jmarko, mhlavink, mmalik, ovasik, rvokal
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 833760 (view as bug list) Environment:
Last Closed: 2011-12-06 17:02:20 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 748554, 833760    

Comment 5 Tomas Mraz 2011-08-15 15:24:55 UTC 
It is really questionable what the fix should be here. Note that there is the saslauth group that is shared with the cyrus-imapd package - so there certainly the -g 76 option should be added. But the saslauth user should use a different uid that is not preallocated in the setup yet.
Comment 6 RHEL Program Management 2011-08-15 15:30:12 UTC 
This request was evaluated by Red Hat Product Management for inclusion
in a Red Hat Enterprise Linux maintenance release. Product Management has 
requested further review of this request by Red Hat Engineering, for potential
inclusion in a Red Hat Enterprise Linux Update release for currently deployed 
products. This request is not yet committed for inclusion in an Update release.
Comment 10 Michal Hlavinka 2011-10-11 08:45:21 UTC 
this change is "nice to have", but in new Fedora version, it's breaking stuff (cyrus-imapd bug #744682 ), so it's a bad idea to fix it in rhel6

For fixing this, I'd have to update cyrus-imapd, but it'd change
a)cyrus user to saslauth user
OR
b)changed uid of cyrus user

both could break existing installations
this change should be reverted
Comment 11 Ondrej Vasik 2011-10-11 12:49:29 UTC 
Allocating saslauth user as static id 76 is no-go  - it should be either dynamically allocated or ask for static id reservation in setup package (if required). Creating group is perfectly ok, as this group id is reserved.

Moving back to Assigned and setting blocker, as this change is breaking cyrus-imapd package.
Comment 12 Ondrej Vasik 2011-10-11 12:51:00 UTC 
*** Bug 744682 has been marked as a duplicate of this bug. ***
Comment 15 errata-xmlrpc 2011-12-06 17:02:20 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2011-1687.html