On Tue, 04 Feb 2025 09:20:24 -0500 "Colin Walters" <walt...@verbum.org> wrote:
> > > On Sat, Jan 25, 2025, at 4:05 AM, Zbigniew Jędrzejewski-Szmek wrote: > > > So yeah, having a package with a sysusers file and files owned by the > > users or groups defined therein works fine. (This was already possible > > before, but required careful creation of a %pre scriptlet. The new > > mechanism is much nicer.) > > Yes, but it is *much* better if you can to avoid having files owned by > floating users in packages, because it greatly increases compatibility with > image-based update systems. > More on this in e.g. > https://docs.fedoraproject.org/en-US/bootc/building-containers/#_invoking_useradd_as_part_of_a_container_build > > If for example you're doing the work to add sysusers right now and you happen > to also have e.g. `/var/lib/foo` in your RPM owned by that user, please also > take the opportunity to drop that entry (with `%ghost` if you want) and > create it via systemd-tmpfiles instead. isn't there a "best practices" document how to handle services, users, config files, runtime dirs, etc stuff in a modern world? I think one can find the individual pieces, but I am missing the global picture. Dan -- _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
