# # spec file for package system-users # # Copyright (c) 2021 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via https://bugs.opensuse.org/ # Name: system-users Version: 20170617 Release: 24.11 Summary: Provide system accounts License: MIT Group: System/Fhs Source1: system-user-uucp.conf Source2: system-user-games.conf Source3: system-user-bin.conf Source4: system-user-daemon.conf Source5: system-user-man.conf Source6: system-user-news.conf Source8: system-group-obsolete.conf Source9: system-group-hardware.conf Source10: system-group-wheel.conf Source11: system-user-wwwrun.conf Source12: system-user-mail.conf Source13: system-user-ftp.conf Source14: system-user-lp.conf Source15: system-user-nobody.conf Source16: system-user-upsd.conf Source17: system-user-uuidd.conf Source19: system-user-tftp.conf Source20: system-user-tss.conf Source21: system-group-kvm.conf Source22: system-user-qemu.conf Source23: system-group-libvirt.conf Source24: system-user-vscan.conf Source25: system-user-ntp.conf BuildRequires: sysuser-shadow BuildRequires: sysuser-tools BuildArch: noarch %description This package provides various system users and their directories %package -n system-user-bin Summary: System user and group 'bin' #!BuildIgnore: user(daemon) Group: System/Fhs Requires(pre): user(daemon) %{sysusers_requires} %description -n system-user-bin This package provides the system account and group 'bin' and their corresponding directories. %package -n system-user-daemon Summary: System user and group 'daemon' Group: System/Fhs %{sysusers_requires} %description -n system-user-daemon This package provides the system account and group 'daemon' and their corresponding directories. %package -n system-user-man Summary: System user and group 'man' Group: System/Fhs %{sysusers_requires} %description -n system-user-man This package provides the system account and group 'man' and their corresponding directories. %package -n system-user-news Summary: System user and group 'news' Group: System/Fhs %{sysusers_requires} %description -n system-user-news This package provides the system account and group 'news' and their corresponding directories. %package -n system-user-uucp Summary: System user and group uucp #!BuildIgnore: group(lock) Group: System/Fhs Requires(pre): group(lock) %{sysusers_requires} %description -n system-user-uucp This package provides the system account and group 'uucp' and their corresponding directories. %package -n system-user-games Summary: System user and group games Group: System/Fhs %{sysusers_requires} %description -n system-user-games This package provides the system account and group 'games'. %package -n system-group-obsolete Summary: Obsolete system groups Group: System/Fhs %{sysusers_requires} %description -n system-group-obsolete This package provides some obsolete system groups. %package -n system-group-hardware Summary: Hardware related system groups Group: System/Fhs %{sysusers_requires} %description -n system-group-hardware This package provides some hardware related system groups required by udev. %package -n system-group-wheel Summary: System group 'wheel' Group: System/Fhs %{sysusers_requires} %description -n system-group-wheel This package provides the system group 'wheel'. %package -n system-user-wwwrun Summary: System user wwwrun and group www Group: System/Fhs %{sysusers_requires} %description -n system-user-wwwrun This package provides the system account 'wwwrun' and group 'www'. %package -n system-user-mail Summary: System user and group mail Group: System/Fhs %{sysusers_requires} %description -n system-user-mail This package provides the system account and group 'mail'. %package -n system-user-ftp Summary: System user and group ftp Group: System/Fhs %{sysusers_requires} %description -n system-user-ftp This package provides the system account and group 'ftp'. %package -n system-user-lp Summary: System user lp Group: System/Fhs Requires(pre): group(lp) #!BuildIgnore: group(lp) %{sysusers_requires} %description -n system-user-lp This package provides the system account and group 'lp'. %package -n system-user-nobody Summary: System user and group nobody Group: System/Fhs %{sysusers_requires} %description -n system-user-nobody This package provides the system account and group 'nobody'. %package -n system-user-upsd Summary: System user upsd #!BuildIgnore: group(daemon) Group: System/Fhs Requires(pre): group(daemon) %{sysusers_requires} %description -n system-user-upsd This package provides the system account 'upsd'. %package -n system-user-uuidd Summary: System user and group uuidd Group: System/Fhs %{sysusers_requires} %description -n system-user-uuidd This package provides the system account and group 'uuidd'. %package -n system-user-tftp Summary: System user and group tftp Group: System/Fhs %{sysusers_requires} %description -n system-user-tftp This package provides the system account and group 'tftp'. %package -n system-user-tss Summary: System user and group tss Group: System/Fhs %{sysusers_requires} %description -n system-user-tss This package provides the system account and group 'tss'. %package -n system-group-kvm Summary: System group kvm Group: System/Fhs %{sysusers_requires} %description -n system-group-kvm This package provides the system group 'kvm'. %package -n system-user-qemu Summary: System user and group qemu Group: System/Fhs Requires(pre): group(kvm) %{sysusers_requires} %description -n system-user-qemu This package provides the system account and group 'qemu'. %package -n system-group-libvirt Summary: System group libvirt Group: System/Fhs %{sysusers_requires} %description -n system-group-libvirt This package provides the system group 'libvirt'. %package -n system-user-vscan Summary: System user vscan Group: System/Fhs %{sysusers_requires} %description -n system-user-vscan This package provides the system user 'vscan'. %package -n system-user-ntp Summary: System user ntp and group Group: System/Fhs %{sysusers_requires} %description -n system-user-ntp This package provides the system user and group 'ntp'. %prep %setup -q -c -T %build %sysusers_generate_pre %{SOURCE1} uucp system-user-uucp.conf %sysusers_generate_pre %{SOURCE2} games system-user-games.conf %sysusers_generate_pre %{SOURCE3} bin system-user-bin.conf %sysusers_generate_pre %{SOURCE4} daemon system-user-daemon.conf %sysusers_generate_pre %{SOURCE5} man system-user-man.conf %sysusers_generate_pre %{SOURCE6} news system-user-news.conf %sysusers_generate_pre %{SOURCE8} obsolete system-group-obsolete.conf %sysusers_generate_pre %{SOURCE9} hardware system-group-hardware.conf %sysusers_generate_pre %{SOURCE10} wheel system-group-wheel.conf %sysusers_generate_pre %{SOURCE11} wwwrun system-user-wwwrun.conf %sysusers_generate_pre %{SOURCE12} mail system-user-mail.conf %sysusers_generate_pre %{SOURCE13} ftp system-user-ftp.conf %sysusers_generate_pre %{SOURCE14} lp system-user-lp.conf %sysusers_generate_pre %{SOURCE15} nobody system-user-nobody.conf %sysusers_generate_pre %{SOURCE16} upsd system-user-upsd.conf %sysusers_generate_pre %{SOURCE17} uuidd system-user-uuidd.conf %sysusers_generate_pre %{SOURCE19} tftp system-user-tftp.conf %sysusers_generate_pre %{SOURCE20} tss system-user-tss.conf %sysusers_generate_pre %{SOURCE21} kvm system-group-kvm.conf %sysusers_generate_pre %{SOURCE22} qemu system-user-qemu.conf %sysusers_generate_pre %{SOURCE23} libvirt system-group-libvirt.conf %sysusers_generate_pre %{SOURCE24} vscan system-user-vscan.conf %sysusers_generate_pre %{SOURCE25} ntp system-user-ntp.conf %install mkdir -p %{buildroot}%{_sysusersdir} mkdir -p %{buildroot}%{_sysconfdir}/uucp mkdir -p %{buildroot}%{_sysconfdir}/news mkdir -p %{buildroot}%{_localstatedir}/games mkdir -p %{buildroot}%{_localstatedir}/lib/ntp mkdir -p %{buildroot}%{_localstatedir}/lib/wwwrun mkdir -p %{buildroot}%{_localstatedir}/spool/amavis mkdir -p %{buildroot}%{_localstatedir}/spool/clientmqueue mkdir -p %{buildroot}%{_localstatedir}/spool/lpd mkdir -p %{buildroot}%{_localstatedir}/run/uuidd mkdir -p %{buildroot}/srv/ftp mkdir -p %{buildroot}%{_localstatedir}/lib/nobody mkdir -p %{buildroot}/srv/tftpboot mkdir -p %{buildroot}/var/lib/tpm install -m 644 %{SOURCE1} %{buildroot}%{_sysusersdir}/system-user-uucp.conf install -m 644 %{SOURCE2} %{buildroot}%{_sysusersdir}/system-user-games.conf install -m 644 %{SOURCE3} %{buildroot}%{_sysusersdir}/system-user-bin.conf install -m 644 %{SOURCE4} %{buildroot}%{_sysusersdir}/system-user-daemon.conf install -m 644 %{SOURCE5} %{buildroot}%{_sysusersdir}/system-user-man.conf install -m 644 %{SOURCE6} %{buildroot}%{_sysusersdir}/system-user-news.conf install -m 644 %{SOURCE8} %{buildroot}%{_sysusersdir}/system-group-obsolete.conf install -m 644 %{SOURCE9} %{buildroot}%{_sysusersdir}/system-group-hardware.conf install -m 644 %{SOURCE10} %{buildroot}%{_sysusersdir}/system-group-wheel.conf install -m 644 %{SOURCE11} %{buildroot}%{_sysusersdir}/system-user-wwwrun.conf install -m 644 %{SOURCE12} %{buildroot}%{_sysusersdir}/system-user-mail.conf install -m 644 %{SOURCE13} %{buildroot}%{_sysusersdir}/system-user-ftp.conf install -m 644 %{SOURCE14} %{buildroot}%{_sysusersdir}/system-user-lp.conf install -m 644 %{SOURCE15} %{buildroot}%{_sysusersdir}/system-user-nobody.conf install -m 644 %{SOURCE16} %{buildroot}%{_sysusersdir}/system-user-upsd.conf install -m 644 %{SOURCE17} %{buildroot}%{_sysusersdir}/system-user-uuidd.conf install -m 644 %{SOURCE19} %{buildroot}%{_sysusersdir}/system-user-tftp.conf install -m 644 %{SOURCE20} %{buildroot}%{_sysusersdir}/system-user-tss.conf install -m 644 %{SOURCE21} %{buildroot}%{_sysusersdir}/system-group-kvm.conf install -m 644 %{SOURCE22} %{buildroot}%{_sysusersdir}/system-user-qemu.conf install -m 644 %{SOURCE23} %{buildroot}%{_sysusersdir}/system-group-libvirt.conf install -m 644 %{SOURCE24} %{buildroot}%{_sysusersdir}/system-user-vscan.conf install -m 644 %{SOURCE25} %{buildroot}%{_sysusersdir}/system-user-ntp.conf %pre -n system-user-uucp -f uucp.pre %pre -n system-user-games -f games.pre %pre -n system-user-bin -f bin.pre %pre -n system-user-daemon -f daemon.pre %pre -n system-user-man -f man.pre %pre -n system-user-news -f news.pre %pre -n system-group-obsolete -f obsolete.pre %pre -n system-group-hardware -f hardware.pre %pre -n system-group-wheel -f wheel.pre %pre -n system-user-wwwrun -f wwwrun.pre %pre -n system-user-mail -f mail.pre %pre -n system-user-ftp -f ftp.pre %pre -n system-user-lp -f lp.pre %pre -n system-user-nobody -f nobody.pre %pre -n system-user-upsd -f upsd.pre %pre -n system-user-uuidd -f uuidd.pre %pre -n system-user-tftp -f tftp.pre %pre -n system-user-tss -f tss.pre %pre -n system-group-kvm -f kvm.pre %pre -n system-user-qemu -f qemu.pre %pre -n system-group-libvirt -f libvirt.pre %pre -n system-user-vscan -f vscan.pre %pre -n system-user-ntp -f ntp.pre %files -n system-user-uucp %defattr(-,root,root) %dir %attr(0750,uucp,uucp) %{_sysconfdir}/uucp %{_sysusersdir}/system-user-uucp.conf %files -n system-user-games %defattr(-,root,root) %dir %attr(0755,root,root) %{_localstatedir}/games %{_sysusersdir}/system-user-games.conf %files -n system-user-bin %defattr(-,root,root) %{_sysusersdir}/system-user-bin.conf %files -n system-user-daemon %defattr(-,root,root) %{_sysusersdir}/system-user-daemon.conf %files -n system-user-man %defattr(-,root,root) %{_sysusersdir}/system-user-man.conf %files -n system-user-news %defattr(-,root,root) %dir %attr(0750,news,news) %{_sysconfdir}/news %{_sysusersdir}/system-user-news.conf %files -n system-group-obsolete %defattr(-,root,root) %{_sysusersdir}/system-group-obsolete.conf %files -n system-group-hardware %defattr(-,root,root) %{_sysusersdir}/system-group-hardware.conf %files -n system-group-wheel %defattr(-,root,root) %{_sysusersdir}/system-group-wheel.conf %files -n system-user-wwwrun %defattr(-,root,root) %dir %attr(0755,wwwrun,root) %{_localstatedir}/lib/wwwrun %{_sysusersdir}/system-user-wwwrun.conf %files -n system-user-mail %defattr(-,root,root) %dir %attr(0770,mail,mail) %{_localstatedir}/spool/clientmqueue %{_sysusersdir}/system-user-mail.conf %files -n system-user-ftp %defattr(-,root,root) %dir %attr(0755,root,root) /srv/ftp %{_sysusersdir}/system-user-ftp.conf %files -n system-user-lp %defattr(-,root,root) %dir %attr(0755,lp,lp) %{_localstatedir}/spool/lpd %{_sysusersdir}/system-user-lp.conf %files -n system-user-nobody %defattr(-,root,root) %dir %attr(0755,nobody,root) %{_localstatedir}/lib/nobody %{_sysusersdir}/system-user-nobody.conf %files -n system-user-upsd %defattr(-,root,root) %{_sysusersdir}/system-user-upsd.conf %files -n system-user-uuidd %defattr(-,root,root) %{_sysusersdir}/system-user-uuidd.conf %files -n system-user-tftp %defattr(-,root,root) %dir %attr(0755,tftp,tftp) /srv/tftpboot %{_sysusersdir}/system-user-tftp.conf %files -n system-user-tss %defattr(-,root,root) %dir %attr(0750,tss,tss) /var/lib/tpm %{_sysusersdir}/system-user-tss.conf %files -n system-group-kvm %defattr(-,root,root) %{_sysusersdir}/system-group-kvm.conf %files -n system-user-qemu %defattr(-,root,root) %{_sysusersdir}/system-user-qemu.conf %files -n system-group-libvirt %defattr(-,root,root) %{_sysusersdir}/system-group-libvirt.conf %files -n system-user-vscan %defattr(-,root,root) %dir %attr(0750,vscan,vscan) %{_localstatedir}/spool/amavis %{_sysusersdir}/system-user-vscan.conf %files -n system-user-ntp %defattr(-,root,root) %dir %attr(0755,root,root) %{_localstatedir}/lib/ntp %{_sysusersdir}/system-user-ntp.conf %changelog * Wed Sep 8 2021 Thorsten Kukuk - Set shell for nobody in sysusers.d config * Tue Jun 8 2021 Franck Bui - Add default hardware group for 'sgx' enclave access Since udev v248, a default rule for /dev/sgx_enclave is provided to give rw access to the new group hopefully making 'sgx' the standard group name for such devices (bsc#1190572). * Mon Jun 7 2021 Thorsten Kukuk - Add third argument to sysusers_generate_pre calls to allow admin overrides with systemd-sysusers * Fri Feb 12 2021 Reinhard Max - Revert /var/lib/ntp to the ownership and permissions it had in the ntp package. It should be owned by root and not be writable by the ntp user, because it is the base of ntpd's chroot envoronment and the ntp user is not supposed to log in anyway. * Thu Jan 14 2021 Thorsten Kukuk - system-user-tss.conf: Remove group entry, not needed and did contain syntax errors (bsc#1190401). - remove duplicate group entry: - system-user-tftp.conf - system-user-uuidd.conf - system-user-uucp.conf - system-user-uucp.conf - system-user-ftp.conf - system-user-games.conf - system-user-news.conf * Fri Jan 8 2021 Martin Hauke - Add system-user-ntp subpackage with ntp user and group and /var/lib/ntp as home directory * Sun Dec 27 2020 Arjen de Korte - Add system-user-vscan subpackage with vscan user and group and /var/spool/amavis as home directory * Fri Dec 4 2020 Frederic Crozat - Remove kvm group from hardware subpackage, since kvm is in its own subpackage (jsc#SLE-11629). * Fri Nov 13 2020 James Fehlig - Add qemu user to kvm group * Thu Nov 12 2020 James Fehlig - Add system account and groups for kvm, qemu, and libvirt (jsc#SLE-11629) New files: system-group-kvm.conf, system-group-libvirt.conf, system-user-qemu.conf * Fri Aug 21 2020 Thorsten Kukuk - Don't add group nogroup to user nobody, as many daemons misuse 'nogroup' as own group * Wed Mar 25 2020 Thorsten Kukuk - Use test -x instead of -f * Fri Mar 20 2020 Thorsten Kukuk - Call usermod only if installed * Tue Feb 18 2020 Michal Suchanek - Align /var/lib/tss permissions with trousers (boo#1162360). * Fri Jan 31 2020 Michal Suchanek - Add tss user for TPM tools (boo#1162360). * Tue Aug 13 2019 Michal Suchanek - Remove s390 groups again. The s390-tools maintainer wants to add groups in s390-tools manually. * Wed Jul 31 2019 Reinhard Max - Add system-user-tftp subpackage with tftp user and group and /srv/tftpboot as home directory [bsc#1143454]. * Thu Jan 31 2019 Michal Suchanek - Add cpacfstats, ts-shell, and zkeyadm groups for s390-tools (bsc#1123730) * Wed Mar 21 2018 fbui@suse.com - Add "render" group in system-group-hardware (bsc#1085847) "uaccess" tag has been dropped from /dev/dri/renderD* and these devices now have 0666 permsions by default is owned by the render group. * Wed Nov 29 2017 kukuk@suse.de - Change home directory of user man to /var/lib/empty. Home directories below /var/cache are by definition insecure and a bad idea. * Thu Sep 14 2017 kukuk@suse.de - uuidd does not need group daemon, Copy&Paste error. * Thu Sep 14 2017 kukuk@suse.de - udev needs groups kvm and lp: [bsc#1058703] - Add group kvm to system-group-hardware - Move group lp from system-user-lp to system-group-hardware * Tue Sep 12 2017 sbrabec@suse.com - Add system-user-uuidd.conf (boo#1057937#c3). * Mon Aug 21 2017 kukuk@suse.de - user nobody: move usermod to %%post, else it will be executed before the user is created. * Mon Jul 10 2017 dimstar@opensuse.org - Drop pkgconfig(systemd) BuildRequires: we no longer depend on systemd-sysusers, but converted to shadow toolset. * Mon Jun 19 2017 kukuk@suse.de - Move group trusted into system-user-root package [bsc#1044014] * Sat Jun 17 2017 kukuk@suse.de - Move system-user-root into own package * Fri Jun 9 2017 kukuk@suse.de - Fix syntax of groups in system-user-root.conf * Fri Jun 9 2017 kukuk@suse.de - Add utmp to system-group-hardware.conf like systemd has - Create new system-user-root sub-package creating passwd, group and shadow files with root user. * Tue Jun 6 2017 dimstar@opensuse.org - BuildRequire pkgconfig(systemd) instead of systemd: this allows OBS to pick systemd-mini, which is still good enough. And ultimately it helps us break a build cycle (system-users - libssh2_org - curl - systemd - system-users). * Tue Jun 6 2017 lnussel@suse.de - BuildIgnore group(lock) and group(daemon) for ourselves, needed for bootstrap. * Wed May 3 2017 kukuk@suse.de - /bin/bash is needed as shell for user nobody * Tue May 2 2017 sbrabec@suse.com - Add upsd for UPS daemon packages. * Sat Apr 1 2017 kukuk@suse.com - Prerequire group lock for uucp * Sat Apr 1 2017 werner@suse.de - Allow user uucp to do locking * Fri Mar 17 2017 kukuk@suse.de - Fix group ownership of /var/lib/wwwrun * Wed Mar 15 2017 kukuk@suse.de - Add group sys to system-group-obsolete - Add systemusers lp and nobody * Wed Mar 15 2017 kukuk@suse.de - Add systemusers wwwrun, mail and ftp * Sat Mar 11 2017 kukuk@suse.de - Add hardware access groups: kmem, lock, tty, audio, cdrom, dialout, disk, input, tape, video - Add group wheel * Tue Feb 21 2017 kukuk@suse.de - Remove /var/spool/uucp directories... * Mon Feb 20 2017 kukuk@suse.de - Change license to MIT * Sat Jan 21 2017 kukuk@suse.de - Add subpackages for obsolete groups and trusted group * Sat Jan 21 2017 kukuk@suse.de - Add subpackages for bin, daemon, news and man * Fri Jan 20 2017 kukuk@suse.de - Adjust to new sysuser-tools * Thu Dec 22 2016 lnussel@suse.de - Use automatic provides and generate %%pre with a script - fix uids and add also groups * Tue Dec 20 2016 kukuk@suse.de - Create users in %%pre install section * Thu Oct 27 2016 kukuk@suse.de - Add /etc/uucp to filelist of system-user-uucp * Wed Oct 26 2016 kukuk@suse.de - Add system account games * Wed Oct 26 2016 kukuk@suse.de - Initial version with system account uucp