=Comment: #0================================================= Emily J. Ratliff <emilyr.com> - 2008-08-01 11:37 EDT ---Problem Description--- I would like to request official assignment of a uid/gid for use by the trousers package. TrouSerS upstream uses tss/tss as the user and group names. Contact Information = Emily Ratliff/emilyr.com ---Security Component Data--- Userspace tool common name: tcsd Userspace rpm: trousers
Hi, I mirrored this bug from the LTC bugzilla to the RH bugzilla against the trousers component. I believe that is wrong, but I don't know which component owns this particular bug. I changed the owner of the bug to Philip Knirsch.
Emily, why do you want uid/gid pair? If I remember, there were lots of problems changing uid/gid in the trousers package.
Hi Steve, The primary reason is that it can be included in the Common Criteria certified stack for free if tcsd does not run as root. Additionally, I would like to minimize the number of daemons running as root by default. And TrouSerS upstream runs tcsd as tss exclusively. In Fedora it is currently installing under tss/tss despite not having tss/tss officially registered. Thanks, Emily
I have just added the following uid/gid pair to Fedora and will be using the same assignment in RHEL-5: tss 59 59 - /sbin/nologin trousers Thanks, Read ya, Phil
Red Hat, Do you expect this to make RHEL 5.3?
Deferring to 5.5 based on discussions with Emily. The gid and uid have been assigned and next the changes in Fedora need to go into Fedora. Once in Fedora, IBM will put in a request for RHEL.
This bugzilla has Keywords FutureFeature or HardwareEnablement and thus does not meet the release criteria for FasTrack. This FasTrack request has been denied. This bugzilla must be addressed in a minor release.
This enhancement request was evaluated by the full Red Hat Enterprise Linux team for inclusion in a Red Hat Enterprise Linux minor release. As a result of this evaluation, Red Hat has tentatively approved inclusion of this feature in the next Red Hat Enterprise Linux Update minor release. While it is a goal to include this enhancement in the next minor release of Red Hat Enterprise Linux, the enhancement is not yet committed for inclusion in the next minor release pending the next phase of actual code integration and successful Red Hat and partner testing.
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2009-0484.html
------- Comment From sglass.com 2009-06-15 09:03 EDT------- Since this went out in a Errata already, moving to Accepted state