X-Recipient: archive-cygwin AT delorie DOT com
X-SWARE-Spam-Status: No, hits=-2.4 required=5.0 	tests=AWL,BAYES_00,SPF_HELO_PASS
X-Spam-Check-By: sourceware.org
Message-ID: <49C93051.3030806@cygwin.com>
Date: Tue, 24 Mar 2009 15:11:13 -0400
From: "Larry Hall (Cygwin)" <reply-to-list-only-lh AT cygwin DOT com>
Reply-To: cygwin AT cygwin DOT com
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.19) Gecko/20090101 Remi/2.0.0.19-1.fc8.remi Lightning/0.9 Thunderbird/2.0.0.19 Mnenhy/0.7.5.0
MIME-Version: 1.0
To: cygwin AT cygwin DOT com
Subject: Re: Keeping /etc/{group,passwd} intentionally out of date?
References: <49C92CF5 DOT 2090509 AT cat DOT pdx DOT edu>
In-Reply-To: <49C92CF5.2090509@cat.pdx.edu>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

Darren Pilgrim wrote:
> We have cygwin installed in a lab with a large number of domain groups 
> and users.  Keeping the /etc/group and /etc/passwd files up to date is 
> impractical due to the rate of account turn-over.  Cygwin Bash Shell has 
> been giving us the error messages produced from /etc/profile nagging us 
> to run mkgroup and mkpasswd.
> 
> Is there anything that will for sure break if our domain user/group 
> information isn't kept current in those files?  Same question but for 
> local group/user information?  Is the effect like that in other unix 
> environments--cosmetic and you're limited to specifying numeric IDs?  I 
> can't find anything obvious and non-cosmetic that would break if these 
> files didn't contain the user's information.  Can I just rip out the 
> checks and be done with it?

The uid to SID mapping is kept in both files, so users/groups that don't
show up in the files are likely to experience permissions problems.  In
case you haven't considered these options, you can always add specific
users/groups to the files (see man pages for 'mkpasswd' and 'mkgroup') or,
if you don't mind the network access, you can keep one file on the network
for all to use, so you can update this once for everybody on some regular
basis.

-- 
Larry Hall                              http://www.rfk.com
RFK Partners, Inc.                      (508) 893-9779 - RFK Office
216 Dalton Rd.                          (508) 893-9889 - FAX
Holliston, MA 01746

_____________________________________________________________________

A: Yes.
 > Q: Are you sure?
 >> A: Because it reverses the logical flow of conversation.
 >>> Q: Why is top posting annoying in email?

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/