To my knowledge the subordinate UIDs and GIDs are assigned to accounts in such a manner that they form a contiguous range.
The range starts at 100000 by default and probably stretches to the theoretical maximum value for a UID/GID (even though I haven't found a way to query this from the shell, /etc/login.defs only lists the values allowed for the tools).
Now, it'd be a lot more convenient for me as a human if the ranges would start at a multiple of 100000, i.e. n*100000 with n being a positive integer (n>0), instead of 100000+n*65536. This way I'd be able to see immediately which file is owned by which host user.
Is there a way to influence the assignment of subordinate UIDs/GIDs in some way in modern enough shadow-utils to achieve a more human-readable assignment?
If not, is it alright to simply overwrite the files /etc/subuid and /etc/subgid with conforming data to get what I want?
Aucun commentaire:
Enregistrer un commentaire