On Fri, Feb 07, 2025 at 11:36:04PM +0100, Chris Hofstaedtler wrote: > Yeah I think this is misguided. Most of the time you cannot > guarantee no files exist on the filesystem owned by the user. > Later the uid will be reallocated to a new user, and then you've got > a real problem. > > Apparently in this case you also cannot guarantee no programs are > still running as the user in question. > > AFAIK most packages that create users also leave them on the system > for the stated reasons.
yes! (to everything.)
sadly this is still under documented, eg see #399028 "developers-reference:
best practices to create and delete system accounts".
also, piuparts doesn't complain about users left after purge for this
very reason.
--
cheers,
Holger
⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ holger@(debian|reproducible-builds|layer-acht).org
⢿⡄⠘⠷⠚⠋⠀ OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
⠈⠳⣄
Privacy is a Human Right. (Universal Declaration of Human Rights, article 12.)
signature.asc
Description: PGP signature
