On Sat, 26 Apr 2025 22:29:07 +0200, Bastian Blank <[email protected]>
wrote:

While you are at it, please switch to sysusers (see dh_installsysusers).

While we're at this, I would like to ask the developer commiunity
whether it is true that we have dedided to go away from having
persistent /etc/passwd and /etc/group and that it will soon be
officially forbidden to use adduser in packages?

If that is actually the case, I'd like to see the discussion that I
must have overlooked.

And, if that is actually the case, adduser 3.150 will be the last
version of adduser maintained by me. Basically forbidding adduser will
spill months of my lifetime down the drain that I spent on the package
in the last 20 years. I'd rather stop wasting more of my life now than
in a month or so. I might even orphan adduser in that case.

Where are we going regarding user creation?

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

* Marc Haber <[email protected]> [250427 08:16]:

On Sat, 26 Apr 2025 22:29:07 +0200, Bastian Blank <[email protected]>
wrote:

While you are at it, please switch to sysusers (see dh_installsysusers).

While we're at this, I would like to ask the developer commiunity
whether it is true that we have dedided to go away from having
persistent /etc/passwd and /etc/group and that it will soon be
officially forbidden to use adduser in packages?

If that is actually the case, I'd like to see the discussion that I
must have overlooked.

I have not seen a decision on this anywhere.

[..]

Where are we going regarding user creation?

Unsure about users, but a general thing I'm seeing is: moving away
from (adhoc) maintainer scripts to declarative configuration.

Now these also often use (automatically generated) maintainer script
fragments, but it seems to be a step towards having no maintainer
scripts one day.

Chris
-- just observing the trends

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sun, Apr 27, 2025 at 10:27:11AM +0200, Chris Hofstaedtler wrote:

* Marc Haber <[email protected]> [250427 08:16]:

On Sat, 26 Apr 2025 22:29:07 +0200, Bastian Blank wrote:

While you are at it, please switch to sysusers (see dh_installsysusers).

While we're at this, I would like to ask the developer commiunity
whether it is true that we have dedided to go away from having
persistent /etc/passwd and /etc/group and that it will soon be
officially forbidden to use adduser in packages?

If that is actually the case, I'd like to see the discussion that I
must have overlooked.

I have not seen a decision on this anywhere.

[..]

Where are we going regarding user creation?

Unsure about users, but a general thing I'm seeing is: moving away from (adhoc) maintainer scripts to declarative configuration.

Now these also often use (automatically generated) maintainer script fragments, but it seems to be a step towards having no maintainer scripts
one day.

For what it is worth: I use `adduser` outside maintainer script.

I think I'm not alone in that.



Groeten
Geert Stappers
--
Silence is hard to parse

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sun, 27 Apr 2025 12:52:57 +0200, Geert Stappers
<[email protected]> wrote:

For what it is worth: I use `adduser` outside maintainer script.

I think I'm not alone in that.

Useradd has grown most of that functionality in the last two decades.
That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

--d9bf72156afd184a88a565ebf7b0c6cf6b59ad3ad4cc15b557b6337cba58 Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset=UTF-8; format=Flowed

Hi Marc,

On Sun Apr 27, 2025 at 2:18 PM CEST, Marc Haber wrote:

Useradd has grown most of that functionality in the last two decades.
That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

I think I do not fully understand what you mean: are you saying that
adduser is useless outside of maintainer scripts?

I always use adduser interactively when I need to interact with users or groups on my system, and I find it very nice. I also very much prefer
using sysusers files to create system users for my packages. I never
touch useradd.

In my opinion adduser has great value outside of maintainer scripts!
But I'm sure you know better than me, so I'm ready to change my mind.

Bye :)

--d9bf72156afd184a88a565ebf7b0c6cf6b59ad3ad4cc15b557b6337cba58
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iIoEABYIADIWIQS6VuNIvZRFHt7JcAdKkgiiRVB3pwUCaA4sRBQcYW5kcmVhQHBh cHBhY29kYS5pdAAKCRBKkgiiRVB3p77/AQCFfGXG5s8UchwAKstJ8bgLD0cZiJaW LtrScIJXIMbY7AD+IWIazSu0lDDxzlsLtQ7SqltHlPGAFHFbkiKBQjLekwM=8+VT
-----END PGP SIGNATURE-----

--d9bf72156afd184a88a565ebf7b0c6cf6b59ad3ad4cc15b557b6337cba58--

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

* Marc Haber <[email protected]> [250427 14:18]:

On Sun, 27 Apr 2025 12:52:57 +0200, Geert Stappers
<[email protected]> wrote:

For what it is worth: I use `adduser` outside maintainer script.

I think I'm not alone in that.

Useradd has grown most of that functionality in the last two decades.
That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

I'm not sure how much of the Debian-specific rules are encoded in
useradd. This lack of rules might also be a problem for sysusers,
but I have no clue, so let me ask: is there a lintian check for
sysusers files?

As long as people want to use adduser, I think/hope they'd be
grateful for its existence and continued maintenance?

Best,
Chris

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sun, Apr 27, 2025 at 02:18:11PM +0200, Marc Haber wrote:

On Sun, 27 Apr 2025 12:52:57 +0200, Geert Stappers
<[email protected]> wrote:

For what it is worth: I use `adduser` outside maintainer script.

I think I'm not alone in that.

Useradd has grown most of that functionality in the last two decades.
That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

From how you write, I have the impression that you might be frustrated,
but I don't think it's useful to think of it in terms of "wasting life
time".

We cannot foresee the future, so we don't really know whether the tools
we work on will be forever needed, or not. adduser has been useful to me
for a long time, and I assume to you as well.

The ecosystem moving away from it, or it not being needed in the future,
does *not* mean you wasted your time on it. Tools are just tools, and
can become obsolete. Having people with knownledge in the problem space
is way more important than having any specific tool, so the time you
invested in this was *not* wasted.

-----BEGIN PGP SIGNATURE-----

iQIzBAABCAAdFiEEst7mYDbECCn80PEM/A2xu81GC94FAmgOOWYACgkQ/A2xu81G C95dKBAA0y4qNfqXE3qFGZxqO+5LYo0IK6UNo0JowonvPF5mUop7HWTRTUU6SZ+W QUXeBo18qPXuM7dpZeE8kYgOssNNbRC/B7ecsj9EALXEg8iCTjOa96z6KNqrC2nl NOLPRXtxu2txDvanvWlnOwGqZMrNUb/B8w0QXKxG3qbSdgGOEhjwoRrpeUijzg8l 6SpUEbJxV1UWXdeL9rZjST011lNNPBiHdRJvbsNyhjw434vBI5l9jA3QsCNuGblk nXM4xAdYFWoHwCdadUU0rp84Fw6ZNzawoX0KtdtiNsZLBD+sHxDQq5P3rpYWIb7f a3YSBcQsM2yor1kUNWtpsDOcsDDDSXQtrRMoTF6VZkGOIKe9FTlp6tb08Ip4Ixvt TTp84iRFoEnOCM22yxSkL1fQumZY6D5PujrCYK+M4kSMXU6XZCoCqFSRlphSLRSx jlLL9kBvu9VvL32Ritvow0cLKxZ9SsSDuRRJGJ7MymVpVgdprDAn806CKXsbB2KW VB93Y+4577d5qXJJ2RfVRh11wVW3ZwrqgjPsIGYoKwT4Gmk/zltidrWfL1qI+RAN NO2VFpj7QN3oqBc4nIN3ZEGGLzZm7P/jcq2owOTkDcpzuRb9/7z1BF0Gx+Yg2bxV 4jqk7s6zYkEdE9JQjqREsho4KHMDmsIvq5wgzb0uErV97lMLjcQ=
=EzG7
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Hi,

For what it is worth: I use `adduser` outside maintainer script.

I think I'm not alone in that.

Useradd has grown most of that functionality in the last two decades.
That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

..

If no one else wants to maintain adduser, I would ask Debian to please
do a call for maintainers before abandoning it. I won't immediately
step up and say "I'll do it" since I don't know if my workplace will
want to allocate my time to that, but it's not beyond the realm of possibility.

I am pretty sure 'adduser' continues to remain useful and worth
maintaining. Thanks Marc for maintaining it!

Anyone who wants to help Marc is welcome to do it at https://salsa.debian.org/debian/adduser/-/merge_requests or send
patches via BTS. There currently open MRs from contributors and over
the years there has been numerous contributors (https://salsa.debian.org/debian/adduser/-/graphs/master) and the
package is in shared Debian namespace, so it is easy to contribute. If
Marc some days wants to pass on the torch to somebody else, I
recommend primairly reaching out to the contributors who already
worked with the package and who are not following this mailing list.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --------------g3388084Oo30Wj7Wz7KD000D
Content-Type: multipart/mixed; boundary="------------u6Nvb6kBUAiEKUbHjOPFs0Yv"

--------------u6Nvb6kBUAiEKUbHjOPFs0Yv
Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: base64

T24gMjcuMDQuMjUgMTQ6MTgsIE1hcmMgSGFiZXIgd3JvdGU6DQo+IFRoYXQgbGVhdmVzIG5v IHNwYWNlIGZvciBhZGR1c2VyIGJldHdlZW4gdXNlcmFkZCBhbmQgc3lzdXNlcnMuDQpJIGhh dmUgbm8gaWRlYSBleGFjdGx5IGhvdyBtYW55IHBhY2thZ2VzIGluIERlYmlhbiBpbXBsZW1l bnQgYSANCm1vc3RseS1zdHJpY3Qgc3Vic2V0IG9mIHRoZSBmZWF0dXJlcyBvZiBzb21lIG90 aGVyIChzZXQgb2YpIHBhY2thZ2Uocykg4oCUIA0KYnV0IHRoZSBudW1iZXIgaXMsIHVtLCBk ZWZpbml0ZWx5IG5vdCBleHByZXNzaWJsZSB3aXRoIG9uZSBkaWdpdCAob3IgDQpldmVuIHR3 byBJTUhPKS4NCj4gQXQgbGVhc3Qgbm90IGVub3VjaCBzcGFjZSB0byB3YXN0ZSBhbnkgbW9y ZSBsaWZlIHRpbWUgb24gaXQuDQoNClRoYXQncyB5b3VyIHBlcnNvbmFsIGNhbGwuDQoNCi0t IA0KLS0gcmVnYXJkcw0KLS0gDQotLSBNYXR0aGlhcyBVcmxpY2hzDQoNCg== --------------u6Nvb6kBUAiEKUbHjOPFs0Yv
Content-Type: text/vcard; charset=UTF-8; name="matthias.vcf" Content-Disposition: attachment; filename="matthias.vcf" Content-Transfer-Encoding: base64

QkVHSU46VkNBUkQNClZFUlNJT046NC4wDQpOOlVybGljaHM7TWF0dGhpYXM7OzsNCk5JQ0tO QU1FOlNtdXJmDQpFTUFJTDtQUkVGPTE6bWF0dGhpYXNAdXJsaWNocy5kZQ0KVEVMO1RZUEU9 d29yaztWQUxVRT1URVhUOis0OSA5MTEgNTk4MTggMA0KVVJMO1RZUEU9aG9tZTpodHRwczov L21hdHRoaWFzLnVybGljaHMuZGUNCkVORDpWQ0FSRA0K

--------------u6Nvb6kBUAiEKUbHjOPFs0Yv--

--------------g3388084Oo30Wj7Wz7KD000D--

-----BEGIN PGP SIGNATURE-----

wsF5BAABCAAjFiEEr9eXgvO67AILKKGfcs+OXiW0wpMFAmgOzMEFAwAAAAAACgkQcs+OXiW0wpMh 6RAAwsL5FOpfMGmYTR1v1zdFjTtuykE32ayc117GSrfHm0zruW2vIoTBUv8UBc9VhPIShFQbCmmT bVtENJwJ31aS/VjPnDY4oMKLumlbvYXwGKM79PveqherRWmg14KB2ArcIy4cxsiocOkVv6zlvAFC PSGIKhG+uKpgdx0dMV6QHbiIy4O1YwHRIdwNOG80clIJ8fEOggNJ8xCSedd1sBvFrbhlnWNCk/fU pKQpZCEonjpJvfVMOGnPVOf7FGyj81npTofEMfaeCgRhsYoZwmUZhqaAwi3bqWaD2R3wv6o2J0Lg nBe1Yt8Cxij3SVcevoHg/90RrEt3pk51kKvXc6xDySIB7ki80vItWNJsrlTs5Zq1B3VWfX/mQBqv 2bezVK57aFknKkrMaRK8KCb99Fih7ns/wc/PAHdOtPkoPEo2yAzgeJUk9cO229F4zSluahYHU9fi lA6S5Su/m3LVZuVPRfM7bKD8cGsUA8kpRu5LheA077NbQPhDOJTg/eiEMsxHBHG8eowK58Fx2Q4x CnvO2jx0On7zLvkxBTBRtx+QNs4B2sPEzf9Y8rZinqf930AB/Y11I7rvyi22vdrauKWhiJjpqvt5 n4jNcAkBkrMr9vMLrLA0XhPpw//6cZaoZXFhyrLufQuAIgQmc93IQxsVyV2zCACtr1VGuXprGYlV VPg=
=KA9P
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sun, 27 Apr 2025 15:08:18 +0200, "Andrea Pappacoda"
<[email protected]> wrote:

On Sun Apr 27, 2025 at 2:18 PM CEST, Marc Haber wrote:

Useradd has grown most of that functionality in the last two decades.
That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

I think I do not fully understand what you mean: are you saying that
adduser is useless outside of maintainer scripts?

I am saying that adduser was written in a time when useradd had about
a fifth of its current features, and that the local admin can use
useradd to create local users as comfortably nowadays, and be portable
between distributions. adduser has developed into a helper for
maintainer scripts, and I was told a few weeks ago that the months of
my life I spent improving adduser are going down the drain.

In my opinion adduser has great value outside of maintainer scripts!
But I'm sure you know better than me, so I'm ready to change my mind.

Take a look at current useradd and decide wehther adduser actually
adds a value other than fitting your finger memory.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sun, 27 Apr 2025 09:49:17 -0500, Aaron Rainbolt
<[email protected]> wrote:

adduser has one very useful piece of functionality useradd doesn't
have to my awareness, which my workplace absolutely depends on for
hardware we build and sell. That's the ability to execute a "hook
script" at user creation (/usr/local/sbin/adduser.local), which can
then do bits of user account specific setup that can't be done via the
skel mechanism. Yes, we could just write a script that calls useradd
and then runs our user setup stuff, but adduser is currently
integrated into KDE (the desktop environment our hardware uses), so
that when the end user creates a new user account in KDE's settings
UI, the hook script is automatically run.

Are you actually sure that KDE uses adduser? adduser as we are talking
about is a Debianism. The Red Hat World has its own adduser, which is
totally independent (and also totally incompatible), so I'd advise all
other programs which should be useful outside the Debian ecosystem to
not invoke adduser but to resort to standardized tools.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sun, 27 Apr 2025 15:13:00 +0200, Chris Hofstaedtler
<[email protected]> wrote:

As long as people want to use adduser, I think/hope they'd be
grateful for its existence and continued maintenance?

As far as I was told, using sysusers is going to be mandatory soon, to
help with containers, immutable /usr and empty /etc.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sun, 27 Apr 2025 11:04:25 -0300, Antonio Terceiro
<[email protected]> wrote:

On Sun, Apr 27, 2025 at 02:18:11PM +0200, Marc Haber wrote:

That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

From how you write, I have the impression that you might be frustrated,

Totally.

This is one more example of Debian lacking technical leadership, with
small groups taking technical decisions for the entire distribution
without even mentioning. Most of those technical decisions are sound
and supportable, but there are technical decisions that have impact on
other packages, and it is bad that those packages learn about it after
spending weeks or even months of spare time without knowing that this
work is going to go down the drain.

Heck, I remember how I (back then, being one of the two main
maintainers of the exim4 packages) noticed that exim4 became the
default MTA. It was like, "Oh, we're Debian's default now. Well, it
would be nice if we didn't learn that from the Packages.gz file!"

I am pretty sure that we won't be contacted when the (long overdue)
switch to postfix will happen.

I am not going to list all the things that should have been discussed
before going into implementation, but for sure the idea of an "empty
/etc" goes against most of my expectations of what I'd like my system
to have. We have the superior conffile handling mechanism, with dpkg
and ucf, for 20 years. While even that mechanism leaves a lot to be
desired, why don't we just finish those tools instead of moving away
from them? Why do we reduce ourselves by using the crutches that other distributions HAVE to use to reduce the pain caused by their inferior
(or not existend) conffile handling?

I fully do understand that it would be nice to have an empty /etc in a container, but I'd hate that in the majority of MY fleet. When did we
decide that we will go for empty /etc?

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

* Marc Haber <[email protected]> [250428 08:40]:

On Sun, 27 Apr 2025 15:13:00 +0200, Chris Hofstaedtler
<[email protected]> wrote:

As long as people want to use adduser, I think/hope they'd be
grateful for its existence and continued maintenance?

As far as I was told, using sysusers is going to be mandatory soon, to
help with containers, immutable /usr and empty /etc.

I don't know about that. It probably helps.

Fedora is discussing what to do in a related context:
https://lwn.net/Articles/1018082/
But sysusers might or might not actually help them.

Chris

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --------------kvGIJVldqzJ4hgGBE6hp6R5S
Content-Type: multipart/mixed; boundary="------------vZlJEap2i5PiYKNES46MAHzC"

--------------vZlJEap2i5PiYKNES46MAHzC
Content-Type: multipart/alternative;
boundary="------------VCTa339yBCTOtOPvj0lSyi9F"

--------------VCTa339yBCTOtOPvj0lSyi9F
Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: base64

T24gMjcuMDQuMjUgMTQ6MTgsIE1hcmMgSGFiZXIgd3JvdGU6DQo+IEF0IGxlYXN0IG5vdCBl bm91Y2ggc3BhY2UgdG8gd2FzdGUgYW55IG1vcmUgbGlmZSB0aW1lIG9uIGl0Lg0KDQpPd2No LiBUaGF0J3Mgb25lIHdheSB0byBsb29rIGF0IGl0LCBidXQgaXQgZG9lcyBzZWVtIHRoYXQg aXQncyBub3QgDQpyZWFsbHkgY29uZHVjdGl2ZSB0byB5b3VyIGVtb3Rpb25hbCB3ZWxsLWJl aW5nLg0KDQpMb29rIGF0IGl0IGFub3RoZXIgd2F5LiBRdWl0ZSBhIGZldyBhZG1pbiBzY3Jp cHRzLCBib3RoIGluIA0KL3Zhci9saWIvZHBrZy9pbmZvIGFuZCBub3QsIHVzZSBhZGR1c2Vy LCBwcmVzdW1hYmx5IGJlY2F1c2UgaXQgZGlkIA0Kc29tZXRoaW5nIG5vIG90aGVyIHRvb2wg ZGlkIGF0IHRoZSB0aW1lLiBUaHVzLCBJTUhPIHlvdSBjYW4gc2FmZWx5IA0KYXNzdW1lIHRo YXQgeW91IHNwZW50IG11Y2ggbGVzcyB0aW1lIG9uIGl0IHRoYW4geW91ciBjb2xsZWN0aXZl IHVzZXJzIA0Kc2F2ZWQsIGFzIHRoZXkgdXRpbGl6ZWQgYWRkdXNlciBpbnN0ZWFkIG9mIHJl LWludmVudGluZyBzb21lIHdoZWVscyAob3IgDQp0aGUgYml0cyBhbmQgcGllY2VzIG9mIHRo ZW0gdGhhdCB0aGV5IG5lZWRlZCkuDQoNCkknZCBjb3VudCB0aGF0IGFzIGEgd2luIGluIG15 IGJvb2suDQoNClRoZSB3b3JrIHBlb3BsZSBkaWQgb24gQ1ZTIGFuZCBTVk4gYW5kIEhHIGFu ZCB3aGF0bm90IGRpZG4ndCBnbyBkb3duIHRoZSANCmRyYWluIGVpdGhlciwgd2hlbiBnaXQg dG9vayBvdmVyIHRoZSB3b3JsZC4gUGVvcGxlIHVzZWQgdGhlbS4gVGhleSBhZGRlZCANCnZh bHVlLiBZZXMsIGluIDIwMjUgaXQncyBwcm9iYWJseSBub3QgYSBnb29kIGlkZWEgdG8gc2V0 IHVwIGEgbmV3IFNWTiANCnJlcG9zaXRvcnksIGFuZCB0aGVyZSdzIHByb2JhYmx5IG5vdCBt dWNoIHBvaW50IGluIHdvcmtpbmcgb24gaW1wcm92aW5nIA0KaXRzIGNvZGUgKm5vdyosIGJ1 dCB0aGF0J3MgYSBkaWZmZXJlbnQgcHJvYmxlbS4NCg0KLS0gDQotLSByZWdhcmRzDQotLSAN Ci0tIE1hdHRoaWFzIFVybGljaHMNCg0K
--------------VCTa339yBCTOtOPvj0lSyi9F
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<div class="moz-cite-prefix">On 27.04.25 14:18, Marc Haber wrote:<br>
</div>
<blockquote type="cite" cite="mid:E1u90x9-00000002Rb5-3kRH@swivel">
<pre class="moz-quote-pre" wrap="">At least not enouch space to waste any more life time on it.</pre>
</blockquote>
<p>Owch. That's one way to look at it, but it does seem that it's
not really conductive to your emotional well-being.</p>
<p>Look at it another way. Quite a few admin scripts, both in
/var/lib/dpkg/info and not, use adduser, presumably because it did
something no other tool did at the time. Thus, IMHO you can safely
assume that you spent much less time on it than your collective
users saved, as they utilized adduser instead of re-inventing some
wheels (or the bits and pieces of them that they needed).</p>
<p>I'd count that as a win in my book.</p>
<p>The work people did on CVS and SVN and HG and whatnot didn't go
down the drain either, when git took over the world. People used
them. They added value. Yes, in 2025 it's probably not a good idea
to set up a new SVN repository, and there's probably not much
point in working on improving its code *now*, but that's a
different problem.<br>
</p>
<pre class="moz-signature" cols="72">--
-- regards
--
-- Matthias Urlichs</pre>
</body>
</html>

--------------VCTa339yBCTOtOPvj0lSyi9F--

--------------vZlJEap2i5PiYKNES46MAHzC
Content-Type: text/vcard; charset=UTF-8; name="matthias.vcf" Content-Disposition: attachment; filename="matthias.vcf" Content-Transfer-Encoding: base64

QkVHSU46VkNBUkQNClZFUlNJT046NC4wDQpOOlVybGljaHM7TWF0dGhpYXM7OzsNCk5JQ0tO QU1FOlNtdXJmDQpFTUFJTDtQUkVGPTE6bWF0dGhpYXNAdXJsaWNocy5kZQ0KVEVMO1RZUEU9 d29yaztWQUxVRT1URVhUOis0OSA5MTEgNTk4MTggMA0KVVJMO1RZUEU9aG9tZTpodHRwczov L21hdHRoaWFzLnVybGljaHMuZGUNCkVORDpWQ0FSRA0K

--------------vZlJEap2i5PiYKNES46MAHzC--

--------------kvGIJVldqzJ4hgGBE6hp6R5S--

-----BEGIN PGP SIGNATURE-----

wsF5BAABCAAjFiEEr9eXgvO67AILKKGfcs+OXiW0wpMFAmgPMJAFAwAAAAAACgkQcs+OXiW0wpMY CRAAnZ7VZylF2B7itdSJsI0h7F0q0AUkdRXghGyhLcmGxChcbiNIGDb9Rr4mw7VCGBT9y2VPwzCM /gB7YbzpJ87GikqgtOljYXhbPabZvN36lxTOJVCHlhInmuyNMNzIdcA4lR87ETHBDqLRxRLEa3vR ZszpGa0ymKCQ9B510FAXaEVZbpj8YTJYzV3qRTM6Sh4XKTiBVxrYeGxIcq0fPNclZAfMlYu7Rvul DkCwBnI3tOb4iR/Fe/w+mB2T+g

On Mon, Apr 28, 2025 at 08:39:17AM +0200, Marc Haber wrote:

On Sun, 27 Apr 2025 15:08:18 +0200, "Andrea Pappacoda"
<[email protected]> wrote:

On Sun Apr 27, 2025 at 2:18 PM CEST, Marc Haber wrote:

Useradd has grown most of that functionality in the last two decades.
That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

To be strictly local: there are probably far more machines in the world
running Debian, Ubuntu and Debian derivatives than current Red Hat or
SUSE if you think of Linux machines with a full OS: for containers,
who knows :)

I think I do not fully understand what you mean: are you saying that >adduser is useless outside of maintainer scripts?

I am saying that adduser was written in a time when useradd had about
a fifth of its current features, and that the local admin can use
useradd to create local users as comfortably nowadays, and be portable between distributions. adduser has developed into a helper for
maintainer scripts, and I was told a few weeks ago that the months of
my life I spent improving adduser are going down the drain.

I don't often add users, but when I do I use useradd to add the user and
than to add the user to a custom group. That's finger memory but it's
constant over 20+ years. It's a Debianism - but it works, and I'm grateful
to you for maintaining it.

In my opinion adduser has great value outside of maintainer scripts!
But I'm sure you know better than me, so I'm ready to change my mind.

Take a look at current useradd and decide wehther adduser actually
adds a value other than fitting your finger memory.

Will do - but thanks for your hard work. For a userbase value of one: *I* appreciate it.

With every good wish, as ever,

Andy Cater
([email protected])

Greetings
Marc
-- ---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Mon, 28 Apr 2025 09:38:56 +0200, Matthias Urlichs
<[email protected]> wrote:

The work people did on CVS and SVN and HG and whatnot didn't go down the >drain either, when git took over the world.

That's different. git won because it was the superior program. Noone
every forbid using svn. Other people deciding in the secret that
Debian will stop using /etc/passwd are forbidding adduser. Using
adduser will be an RC bug.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Hi Marc,

Quoting Marc Haber (2025-04-28 08:39:17)

On Sun, 27 Apr 2025 15:08:18 +0200, "Andrea Pappacoda"
<[email protected]> wrote:

On Sun Apr 27, 2025 at 2:18 PM CEST, Marc Haber wrote:

Useradd has grown most of that functionality in the last two decades.
That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

I think I do not fully understand what you mean: are you saying that >adduser is useless outside of maintainer scripts?

I am saying that adduser was written in a time when useradd had about
a fifth of its current features, and that the local admin can use
useradd to create local users as comfortably nowadays, and be portable between distributions. adduser has developed into a helper for
maintainer scripts, and I was told a few weeks ago that the months of my life I spent improving adduser are going down the drain.

I don't think that's true. Even if maintainer scripts are moving away from adduser, maybe think about it this way:

- adduser has served many thousands of users for two decades directly as well
as indirectly via maintainer scripts or any program which relies on adduser.
All of these thousands of people would not've been able to do what they did
in these many years if you had not maintained adduser. Thousands of people
should be grateful of your work (and so am I) for what adduser has done for
them in the past. This is a fact and independent from wherever adduser is
going in the future. Your life time was far from wasted I think.

- useradd gained the features it did because adduser paved the way for them.
Your software was and is part of a wider ecosystem and you inspired other
software authors to improve their software. You are one of the giants that
others are standing on top of when they wrote their software. This is also
something that nobody can take away from you and which is independent of
wherever adduser is going in the future.

I understand that it feels very good to be the author/maintainer of a popular piece of software. I like the feeling I get when the popcon graph of my own packages is going up. We can also be upset about our own mortality and just as we will not be here one day anymore: what we did in our life will always be part of what the world is like today. Maybe you can think about it that way. Your software has been the cornerstone of the computing use for many, many, many people throughout the years. Nobody can take that away from you. I think you can be very proud. :)

Thank you!

cheers, josch
--==============R92406129037953495=MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Description: signature
Content-Type: application/pgp-signature; name="signature.asc"; charset="us-ascii"

-----BEGIN PGP SIGNATURE-----

iQIzBAABCgAdFiEElFhU6KL81LF4wVq58sulx4+9g+EFAmgPQGoACgkQ8sulx4+9 g+ELTw//QtWoz1b47CW3RU0pJCrofOt4JlzLlXLMlv2FV+o2Rz52jHNtOl9dwjkX VOnBs2HKXE5h5wvWLMHuj8Vhi377Hbdhu9Br94cKyCkRytfInIv88LiJKkK7CaZC rGzPS8HGcrldwTOUcSUU4kj0Jt1FE3ob9OkbUKClDdkuB/Iq0Gr7sAXCEIRKvlxF dM9DPp/aAinENyzG3eWFWegQGqkmMO1vigHz7SfxazMnFuHTaqmO8HmYzNmChyib 3hPlk5iSBsaoyA6G5NSncZhJx/pyF1/dWvnaKNNXHZeAnF17Gii18Lqp1TbMYl0J K8xG1H9p8SOIfYra/gNHu/doJ6t1n8uh5Jcqs8P7KBGIgAqU22bcJ/eh8Ag0BH/R OcYzWPZ9MQE6EXxWXaMm0cNOASN5+cxX0xxndQZjzYbO/DLC8IjopQLLX5jlLzoF JScqTJg9UhytM2wkF+ztf6lYT/38Dfqn9eLSb/f9uv3MBYzHKuNyf+UNkjuAa2As Vog5q4Bsa6yMUCx7aUyedXsdN+yFaFMAZEd1dPwUj82NnZ70nyZUzeVP188razXV bOxIvUFwoihqhGMiCXkw8ccBPMuFIRkyzj0xCWvsytV8XHQqACwUMAlGkQyLDESN vL2Ne2HLMtn9E90voU2nREUCKnqusW6O6dwm3hnJIY5sDNhu2JY=
=ggNI
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Mon, 28 Apr 2025 10:46:39 +0200, Johannes Schauer Marin Rodrigues <[email protected]> wrote:

Quoting Marc Haber (2025-04-28 08:39:17)

I am saying that adduser was written in a time when useradd had about
a fifth of its current features, and that the local admin can use
useradd to create local users as comfortably nowadays, and be portable
between distributions. adduser has developed into a helper for
maintainer scripts, and I was told a few weeks ago that the months of my life
I spent improving adduser are going down the drain.

I don't think that's true. Even if maintainer scripts are moving away from >adduser,

It is GOOD that maintainer scripts are moving away from adduser.
sysusers is for most cases the better way to do it. I absolute hate
the idea that this is being forced because somebody decided that we
should be moving away from persistent /etc/passwd.

- useradd gained the features it did because adduser paved the way for them.

Most of those features were already there when Roland hander over the
package to me two decades ago. About 80 % of my work was improving the
tool for package maintainers without impacting its usefulness for
local admins.

Thank you!

Your kind words are appreciated. My frustration about the way we take
decision remains.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Mon, 28 Apr 2025 09:57:23 +0200, Chris Hofstaedtler
<[email protected]> wrote:

* Marc Haber <[email protected]> [250428 08:52]:

This is one more example of Debian lacking technical leadership, with
small groups taking technical decisions for the entire distribution
without even mentioning.

Yeah. There's always talk about some form of technical leadership
group, but it's always unclear how that should look like, and what
it powers should or even could be.

That's my biggest gripe about Debian. It strongly influences the only
voice I have in that regard, the DPL vote.

So we end up with informal SIGs (to not use "cabals"), and at best a
post to d-devel.

And that's bad.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Hi,

On 28.04.2025 15:40, Marc Haber wrote:

As far as I was told, using sysusers is going to be mandatory soon, to
help with containers, immutable /usr and empty /etc.

FWIW, switching to sysusers would break most of my CI containers --
these are orchestrated by Jenkins, and use a shell script as the root
process. Changing this would require a deep dive into Java code.

My containers use "useradd" instead of "adduser" for the most part
though, because these are just generic "don't run this part as root"
users that require no configuration.

The same goes, I expect, for most of the Docker containers out there --
both systemd-nspawn containers and Docker containers running a copy of
systemd as pid 1 are fairly niche, and will remain so until they also
implement a replacement for Docker-style image distribution, and
k8s-style container orchestration, and provide a stable interface for
creating users inside a container during image creation.

People running Debian inside containers also do not care about immutable
/usr or empty /etc, because containers are immutable anyway, and the
contents of /etc are copied in from version control and switching to a
database style format that uses dedicated tools creates additional
overhead, and, again would require a stable interface for creating
registry entries inside a container during image creation.

Frankly, I don't see that happening any time soon now, and even if it
were, there would be no clear benefit to users, as they already have
working solutions that would be broken by such a change, and the path of
least resistance for them would be to switch to another distribution as container base image.

To get back on the original topic: I (and everyone in the company I work
for) uses "adduser" to create users on shared machines, because it
works, and allows us to actually get on with our main goals. That is
actual value.

Simon

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Am Mon, Apr 28, 2025 at 11:02:13AM +0200 schrieb Marc Haber:

That's my biggest gripe about Debian. It strongly influences the only
voice I have in that regard, the DPL vote.

... speaking as DPL I was also not aware about the adduser issue and I
did not realised that this was a topic in any platform or question on debian-vote. Honestly, I'm happy that I do not need to decide on this
kind of technical decisions and that we have some CTTE. Is there an
according bug documenting the problem?

So we end up with informal SIGs (to not use "cabals"), and at best a
post to d-devel.

And that's bad.

If this is really the normal case that would be really bad. I have the impression that there are other decisions that are better communicated.

Kind regards from a happy adduser user and thank you for spending so
much time into it
Andreas.

--
https://fam-tille.de

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Hi,

On Mon, 28 Apr 2025, at 10:57, Marc Haber wrote:

On Mon, 28 Apr 2025 09:38:56 +0200, Matthias Urlichs

The work people did on CVS and SVN and HG and whatnot didn't go down the >>drain either, when git took over the world.

That's different. git won because it was the superior program.

No. Git won because of the network effects. It was not, and still isn’t superior to Mercurial, not in terms of the internal design, data model nor in terms of the user interface.
I only use Git myself because everyone else uses Git, including my work colleagues. If I were to use Mercurial, I’d be using it on my own, or use hg-git.

--
Cheers,
Andrej

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Mon, 28 Apr 2025 11:34:18 +0200, Andreas Tille <[email protected]>
wrote:

Am Mon, Apr 28, 2025 at 11:02:13AM +0200 schrieb Marc Haber:

That's my biggest gripe about Debian. It strongly influences the only
voice I have in that regard, the DPL vote.

... speaking as DPL I was also not aware about the adduser issue and I
did not realised that this was a topic in any platform or question on >debian-vote. Honestly, I'm happy that I do not need to decide on this
kind of technical decisions and that we have some CTTE. Is there an >according bug documenting the problem?

Not that I know of. I was just told off-the-records that it does not
make sense to spend any more time on adduser since it's going to be
forbidden soon anyway.

Actually, as I said, this is not an adduser issue, it is a general
thing I have with Debian, and it might be misunderstanding on my side
n general. And I understand that this is not fixed without going into
the constitution and changing many of our processes and that this is
not going to happen any time soon.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Mon, Apr 28, 2025 at 12:31:24PM +0200, Marc Haber wrote:

Not that I know of. I was just told off-the-records that it does not
make sense to spend any more time on adduser since it's going to be
forbidden soon anyway.

don't believe everything they say?


and many thanks for maintaining adduser for so long from me too!! i'm sure
i'll be a happy user for years to come! (because I have it's usage scripted.)


--
cheers,
Holger

⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ holger@(debian|reproducible-builds|layer-acht).org
⢿⡄⠘⠷⠚⠋⠀ OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
⠈⠳⣄

Der Spiegel: Herr Professor, vor zwei Wochen sah die Welt noch in Ordnung aus...
Adorno: HALT DIE FRESSE!

-----BEGIN PGP SIGNATURE-----

iQIzBAABCgAdFiEEuL9UE3sJ01zwJv6dCRq4VgaaqhwFAmgPWkUACgkQCRq4Vgaa qhxyBg//cXy5+pmYNzoqewDsLQtL2AewZoICyYOk8F3JmDFfRp8wwkH0UgNfmx4Z Ad3gIjYfyxOlDAK1Q73LemFiiff8uLMTDF4R+iY7MuH/QX23soBck12McRsK9PPK HbDmefbySzOSqtcXuWrqRufiZvG0r8PMNsz4hn5KllhEtNfrXhgNGg3KN/ph7MpQ tuMjPPMCSlAhHzl+PBduS27vJpVXmVv1SJiUPPIF0g5a2nl96fRB7HduEvtNiqDL BwSrxudqdCBIH1JLQU5/H1Xlaqs9Vfv/RGlPrbuuqq3ztkrEppwOGsYXVdZFoBYb Vp0UGIkPUP1XWwQYUU3umbkFiS6xpmXhVZiFSO/LSHS9We8GpRMOoDW0xAr3Khr7 u5xhPNYPPdTg5oXYQXOMbI2aAPy8Io/pXrTvBEqbAlLbm5k3t8Tdf6TZZZ5Ok0F6 3tMrmYfRhKOEikO5kn+qUpiGMLXlYDLXS/02ML52CYdRxf684a+IeDmcK4hj8Ufg RvVSJ0A4vl34a6oRKnRe41BmN/j4YFnRktbHe1P79hDsPNwBtvR/F5/w19xI1bBi
TEdy09

On Mon, 28 Apr 2025 10:36:54 +0000, Holger Levsen
<[email protected]> wrote:

On Mon, Apr 28, 2025 at 12:31:24PM +0200, Marc Haber wrote:

Not that I know of. I was just told off-the-records that it does not
make sense to spend any more time on adduser since it's going to be
forbidden soon anyway.

don't believe everything they say?

The technical reasoning was sound (persistent /etc/passwd is going
away, so packages who need their uid better declare it via sysusers so
that it is recreated automatically on system boot) and I immediately
understood that the advice was correct.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Mon, 28 Apr 2025 09:54:53 +0200, Chris Hofstaedtler
<[email protected]> wrote:

Fedora is discussing what to do in a related context:
https://lwn.net/Articles/1018082/
But sysusers might or might not actually help them.

Could somebody with an LWN subscription share a friends link?

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 2025-04-28, Marc Haber <[email protected]> wrote:

The technical reasoning was sound (persistent /etc/passwd is going
away, so packages who need their uid better declare it via sysusers so
that it is recreated automatically on system boot) and I immediately understood that the advice was correct.

Though some improvements are still quite much needed

https://lwn.net/Articles/1018082/

/Sune

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 2025-04-28, Marc Haber <[email protected]> wrote:

On Mon, 28 Apr 2025 09:54:53 +0200, Chris Hofstaedtler
<[email protected]> wrote:

Fedora is discussing what to do in a related context:
https://lwn.net/Articles/1018082/
But sysusers might or might not actually help them.

Could somebody with an LWN subscription share a friends link?

https://lwn.net/SubscriberLink/1018082/c32532680eaebda6/

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Mon, 28 Apr 2025 09:54:53 +0200, Chris Hofstaedtler
<[email protected]> wrote:

Fedora is discussing what to do in a related context:
https://lwn.net/Articles/1018082/
But sysusers might or might not actually help them.

Yes, that is about the idea, putting more burden on the since they
either have to get along without owning files, apply for a static
assignment, or to go through tempfiles.d to have their files reowned.
The suggested semi-static assignment has become possible with adduser
recently as we finally were able to fix a bug from the 243K range,
from 20 years ago. I was very proud of that and would like to thank
the people contributing the code. Sad that it will live for like a
fifth of the time the bug was open.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Mon, Apr 28, 2025 at 12:56:18PM +0200, Marc Haber wrote:

On Mon, 28 Apr 2025 09:54:53 +0200, Chris Hofstaedtler
<[email protected]> wrote:

Fedora is discussing what to do in a related context:
https://lwn.net/Articles/1018082/
But sysusers might or might not actually help them.

Could somebody with an LWN subscription share a friends link?

https://lwn.net/SubscriberLink/1018082/9da60ec5de229c84/

Bastian

--
There's a way out of any cage.
-- Captain Christopher Pike, "The Menagerie" ("The Cage"),
stardate unknown.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Mon, 28 Apr 2025 10:59:30 -0000 (UTC), Sune Vuorela
<[email protected]> wrote:

On 2025-04-28, Marc Haber <[email protected]> wrote:

The technical reasoning was sound (persistent /etc/passwd is going
away, so packages who need their uid better declare it via sysusers so
that it is recreated automatically on system boot) and I immediately
understood that the advice was correct.

Though some improvements are still quite much needed

https://lwn.net/Articles/1018082/

I totally hate that idea. But I need to accept that. Traditional Unix
is going away, traditional systems are going away. It's all
containers, and everything else has to adapt.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --------------JDJw5VDAGmPipwbi3S8NTrdk
Content-Type: multipart/mixed; boundary="------------xztSUNs0jH7VUjWgzs3dCZE2"

--------------xztSUNs0jH7VUjWgzs3dCZE2
Content-Type: multipart/alternative;
boundary="------------vBKzGT4WG46OjWVMLz0l2aPa"

--------------vBKzGT4WG46OjWVMLz0l2aPa
Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: base64

T24gMjguMDQuMjUgMTA6NTcsIE1hcmMgSGFiZXIgd3JvdGU6DQo+IFRoYXQncyBkaWZmZXJl bnQuIGdpdCB3b24gYmVjYXVzZSBpdCB3YXMgdGhlIHN1cGVyaW9yIHByb2dyYW0uIE5vb25l DQo+IGV2ZXJ5IGZvcmJpZCB1c2luZyBzdm4uDQoNCkkgZG9uJ3QgdGhpbmsgdGhlIHJlYXNv biAqd2h5KiBwcmV2aW91cyB3b3JrIGlzbid0IHVzZWZ1bCBhbnkgbW9yZSwgDQp0b2RheSwg bWF0dGVycyBtdWNoLg0KDQpJIG1lYW4sIGFkZHVzZXIgaXNuJ3QgZ29pbmcgdG8gYmUgc29t ZXdoYXQtb2Jzb2xldGUtZm9yLXNvbWUtdXNlY2FzZXMgDQoobm90IGFsbCBvZiB0aGVtISkg YmVjYXVzZSBzb21lYm9keSBkZWNpZGVkIHRoYXQgTWFyYyBpcyBhIGhvcnJpYmxlIA0KaHVt YW4gYmVpbmcgYW5kL29yIGhpcyB3b3JrIGlzIGFuZCBoYXMgYmVlbiBjb21wbGV0ZWx5IHVz ZWxlc3MsIHF1aXRlIA0KdGhlIG9wcG9zaXRlIGluIGZhY3QsIGJ1dCBiZWNhdXNlIG9mIGV4 dGVybmFscyB0aGF0IHByaW1hIGZhY2llIGhhdmUgDQpub3RoaW5nIHRvIGRvIHdpdGggeW91 IHBlcnNvbmFsbHkgKm9yKiB0aGUgcXVhbGl0eSBvZiB5b3VyIHdvcmsuDQoNCi0tIA0KLS0g bWl0IGZyZXVuZGxpY2hlbiBHcsO8w59lbg0KLS0gDQotLSBNYXR0aGlhcyBVcmxpY2hzDQoN
Cg==
--------------vBKzGT4WG46OjWVMLz0l2aPa
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<div class="moz-cite-prefix">On 28.04.25 10:57, Marc Haber wrote:<br>
</div>
<blockquote type="cite" cite="mid:E1u9KIn-00000002cN8-2FhJ@swivel">
<pre class="moz-quote-pre" wrap="">That's different. git won because it was the superior program. Noone
every forbid using svn.</pre>
</blockquote>
<p>I don't think the reason *why* previous work isn't useful any
more, today, matters much.</p>
<p>I mean, adduser isn't going to be
somewhat-obsolete-for-some-usecases (not all of them!) because
somebody decided that Marc is a horrible human being and/or his
work is and has been completely useless, quite the opposite in
fact, but because of externals that prima facie have nothing to do
with you personally *or* the quality of your work.</p>
<pre class="moz-signature" cols="72">--
-- mit freundlichen Grüßen
--
-- Matthias Urlichs</pre>
</body>
</html>

--------------vBKzGT4WG46OjWVMLz0l2aPa--

--------------xztSUNs0jH7VUjWgzs3dCZE2
Content-Type: text/vcard; charset=UTF-8; name="matthias.vcf" Content-Disposition: attachment; filename="matthias.vcf" Content-Transfer-Encoding: base64

QkVHSU46VkNBUkQNClZFUlNJT046NC4wDQpOOlVybGljaHM7TWF0dGhpYXM7OzsNCk5JQ0tO QU1FOlNtdXJmDQpFTUFJTDtQUkVGPTE6bWF0dGhpYXNAdXJsaWNocy5kZQ0KVEVMO1RZUEU9 d29yaztWQUxVRT1URVhUOis0OSA5MTEgNTk4MTggMA0KVVJMO1RZUEU9aG9tZTpodHRwczov L21hdHRoaWFzLnVybGljaHMuZGUNCkVORDpWQ0FSRA0K

--------------xztSUNs0jH7VUjWgzs3dCZE2--

--------------JDJw5VDAGmPipwbi3S8NTrdk--

-----BEGIN PGP SIGNATURE-----

wsF5BAABCAAjFiEEr9eXgvO67AILKKGfcs+OXiW0wpMFAmgPcc8FAwAAAAAACgkQcs+OXiW0wpN+ iw/6Awyrk97VLpdmG0XHjnmNmeSvXvm+/nn9rGCy/kulgc57hs+kSk9oWxOr/lxRQYSI2tz6H+NP hxtbSWTqr1j9Yljk642DPV+UHCULC4HiHI/syBni1dLsXWRM0SmfCV63kQM9piGfAis84Jxq0anX O9Y6B7Uf7wKWFaD4f7dF/7tpsKMkmlHUIXoK15Ds/DlwlMoALlGZrjav/+WkrtHjWVZLPmr/tZTu bCWPRHX4lW1a6uhepVfwlySDho

On Mon, 28 Apr 2025 14:17:18 +0200, Matthias Urlichs
<[email protected]> wrote:

I mean, adduser isn't going to be somewhat-obsolete-for-some-usecases
(not all of them!) because somebody decided that Marc is a horrible
human being and/or his work is and has been completely useless, quite
the opposite in fact, but because of externals that prima facie have
nothing to do with you personally *or* the quality of your work.

It is still incredibly frustrating. I mean, I KNOW that the
declarative approach is superior for packages, but someone needs to
keep adduser usable for the three digit number of packages that are
sill using it.

And it's different to see the package slowly fade out but to get it
pulled away just because some other maintainer gets his pet feature
implemented and rolled out.

This has happened to me already once when volatile.debian.net went
official and ftpmaster decided that a package that I spent significant
time on wouldn't fit on the org label any more.

In both cases, it is incredibly frustrating to not having known a year
earlier. In the adduser case this is especially bad because I had two volunteers, newcomers to Debian, contributing to adduser in the last
two years whose work could have made more impact in other parts of
Debian. So, it's not only my work going down the drain, but theirs as
well.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Apr 27, Marc Haber <[email protected]> wrote:

While we're at this, I would like to ask the developer commiunity
whether it is true that we have dedided to go away from having
persistent /etc/passwd and /etc/group and that it will soon be
officially forbidden to use adduser in packages?

I am (nominally) one of the systemd package maintainers and I am not
aware of anybody having decided this.
At this point I would say that using DynamicUser if possible, and
sysusers if not, is just a best practice.
As usual in policy matters, policy follows usage.

Like many others, I believe that adduser is generally useful outside of maintainer scripts.

--
ciao,
Marco

-----BEGIN PGP SIGNATURE-----

iHUEABYKAB0WIQQnKUXNg20437dCfobLPsM64d7XgQUCaA+prQAKCRDLPsM64d7X gbHPAP9jh/wiAC9MKxIOYkICZCcFxfkYvEaoFVXNPTTWuVZb3gD/chz06zA2829V fN1fD71uQlKpywGG/o+mE6Z03xQuPw8=
=fsIt
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Marc Haber <[email protected]> writes:

This is one more example of Debian lacking technical leadership, with
small groups taking technical decisions for the entire distribution
without even mentioning. Most of those technical decisions are sound and supportable, but there are technical decisions that have impact on other packages, and it is bad that those packages learn about it after
spending weeks or even months of spare time without knowing that this
work is going to go down the drain.

I just want to make a plug here that my hope when I first started working
on Policy was that Policy could be used for this. That's part of why I
spent a lot of time working on process and trying to identify gaps where
major architectural decisions had gone undocumented in Policy.

I have had almost no time and (to be honest the more directly relevant
problem) emotional energy for Debian since at least last summer and
honestly for some years before that, and I haven't been able to push that vision forward or even keep up with the existing work. Sean has been doing
a fantastic job stepping into the gap I rather messily left, but Policy is
in general underresourced, not so much on the Policy Editor side, but on
the side of people doing the concrete work of documenting stuff. We need
people to be proactively picking up technical decisions, figuring out a consensus, and writing up the results so that they can be merged into the Policy document if we want Policy to be a collection of these decisions
for the project.

I do think that would help, but I'm not sure if it's possible, at least following the current process. It's a fair bit of work and a lot of email
back and forth. But I'm not sure what a better solution would be that
would work with how Debian is structured.

My experience is that the biggest obstacle is timeliness. We have to be
able to document a technical decision within a reasonable amount of time
or people will just go do things because they're blocked and need to move forward. When consensus is clear, I think we can mostly manage that, but
often consensus is murky. My plan to address that had been to promptly
refer such cases to the Technical Committee so that we could keep up
momentum and make a real decision, but (a) I was never entirely sure the
TC was on board with making that many decisions (the TC often decides to
not decide), and (b) I only managed to do this once or twice and then
stopped again so we never got into a rhythm.

I pretty thoroughly dropped this ball along with a whole bunch of other
balls, and I'm not sure my idea was even sound. Sean will certainly have
his own opinions, and he's been doing most of the work recently and I
would put more weight on his views than mine at this point. But maybe this
will get people thinking about how they might be able to step into this decision-making gap and help out with it.

I should probably say explicitly that my guess is that having a high-level process discussion about how Debian should do this in the abstract will probably not be helpful. We're good at having those discussions and then
never acting on them. We probably instead need people to step in and start trying to resolve concrete technical issues and document the resolution,
and then see if we can scale that process by having them identify the bottlenecks they encountered and the places they got stuck.

--
Russ Allbery ([email protected]) <https://www.eyrie.org/~eagle/>

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

* Matthias Urlichs <[email protected]>, 2025-04-28 14:20:

Subscriptions to LWN are free for DDs, somebody (HP IIRC) sponsors
them.

It hasn't been HP for a long time.

https://wiki.debian.org/MemberBenefits says:
"Thank you to Microsoft who is footing the LWN bill since 2020, Debian
France who have topped up the amount requested by LWN for 2023 and HP
who have sponsored in the past."

--
Jakub Wilk

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --------------uQOHShlmgr6aPJzCx6pnHVTa
Content-Type: multipart/mixed; boundary="------------0o5GCGT5X4sh5d8mutZwCJ06"

--------------0o5GCGT5X4sh5d8mutZwCJ06
Content-Type: multipart/alternative;
boundary="------------hRpky9BrWFpkeRpJDOaumVfu"

--------------hRpky9BrWFpkeRpJDOaumVfu
Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: base64

T24gMjguMDQuMjUgMjE6NDYsIEpha3ViIFdpbGsgd3JvdGU6DQo+IEl0IGhhc24ndCBiZWVu IEhQIGZvciBhIGxvbmcgdGltZS4gDQoNClRoYW5rcyBmb3IgdGhlIHVwZGF0ZS4gSXQgKmhh cyogYmVlbiBIUCB3aGVuIEkgZ290IGl0IOKApg0KDQotLSANCi0tIHJlZ2FyZHMNCi0tIA0K LS0gTWF0dGhpYXMgVXJsaWNocw0KDQo=
--------------hRpky9BrWFpkeRpJDOaumVfu
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<div class="moz-cite-prefix">On 28.04.25 21:46, Jakub Wilk wrote:<br>
</div>
<blockquote type="cite"
cite="mid:[email protected]">It hasn't
been HP for a long time.
</blockquote>
<p>Thanks for the update. It *has* been HP when I got it …<br>
</p>
<pre class="moz-signature" cols="72">--
-- regards
--
-- Matthias Urlichs</pre>
</body>
</html>

--------------hRpky9BrWFpkeRpJDOaumVfu--

--------------0o5GCGT5X4sh5d8mutZwCJ06
Content-Type: text/vcard; charset=UTF-8; name="matthias.vcf" Content-Disposition: attachment; filename="matthias.vcf" Content-Transfer-Encoding: base64

QkVHSU46VkNBUkQNClZFUlNJT046NC4wDQpOOlVybGljaHM7TWF0dGhpYXM7OzsNCk5JQ0tO QU1FOlNtdXJmDQpFTUFJTDtQUkVGPTE6bWF0dGhpYXNAdXJsaWNocy5kZQ0KVEVMO1RZUEU9 d29yaztWQUxVRT1URVhUOis0OSA5MTEgNTk4MTggMA0KVVJMO1RZUEU9aG9tZTpodHRwczov L21hdHRoaWFzLnVybGljaHMuZGUNCkVORDpWQ0FSRA0K

--------------0o5GCGT5X4sh5d8mutZwCJ06--

--------------uQOHShlmgr6aPJzCx6pnHVTa--

-----BEGIN PGP SIGNATURE-----

wsF5BAABCAAjFiEEr9eXgvO67AILKKGfcs+OXiW0wpMFAmgQ1lwFAwAAAAAACgkQcs+OXiW0wpOs Sg//QwD3+1Bl7FFFd6MlVGiexBp/38vLvlHE9ZWoPofXhLcHOevd0ryAl3JwlRKjOQf5UoFLY9uO bGZlq00sseSihlyKB2UCl+pNxf2TOqoWu8Gv0eoVTWz46Gf6RAsewB5bdQAZzVo9NAywjii2No9+ 4QcDs5cqhytXrmYyskK+g9Lz9h3tQ/4AYIWJr4dwdtLAJkHOY9GfJLr8gZ76+V10s0LyCAMK7z8+ 23dwd8t9H1ML226qZF3axzhFBi

* Marc Haber <[email protected]> [250428 12:31]:

On Mon, 28 Apr 2025 11:34:18 +0200, Andreas Tille <[email protected]>
wrote:

Am Mon, Apr 28, 2025 at 11:02:13AM +0200 schrieb Marc Haber:

That's my biggest gripe about Debian. It strongly influences the only
voice I have in that regard, the DPL vote.

... speaking as DPL I was also not aware about the adduser issue and I
did not realised that this was a topic in any platform or question on >>debian-vote. Honestly, I'm happy that I do not need to decide on this
kind of technical decisions and that we have some CTTE. Is there an >>according bug documenting the problem?

Not that I know of. I was just told off-the-records that it does not
make sense to spend any more time on adduser since it's going to be
forbidden soon anyway.

Actually, as I said, this is not an adduser issue, it is a general
thing I have with Debian, and it might be misunderstanding on my side
n general. And I understand that this is not fixed without going into
the constitution and changing many of our processes and that this is
not going to happen any time soon.

So, whoever is doing the in-the-shadows technical decision making
here, please also inform me, so I can spend less time on src:shadow.

Thanks,
Chris

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

From: [email protected]

On Sun, Apr 27, 2025 at 7:18 AM Marc Haber <[email protected]> wrote:

On Sun, 27 Apr 2025 12:52:57 +0200, Geert Stappers
<[email protected]> wrote:

For what it is worth: I use `adduser` outside maintainer script.

I think I'm not alone in that.

Useradd has grown most of that functionality in the last two decades.
That leaves no space for adduser between useradd and sysusers. At
least not enouch space to waste any more life time on it.

adduser has one very useful piece of functionality useradd doesn't
have to my awareness, which my workplace absolutely depends on for
hardware we build and sell. That's the ability to execute a "hook
script" at user creation (/usr/local/sbin/adduser.local), which can
then do bits of user account specific setup that can't be done via the
skel mechanism. Yes, we could just write a script that calls useradd
and then runs our user setup stuff, but adduser is currently
integrated into KDE (the desktop environment our hardware uses), so
that when the end user creates a new user account in KDE's settings
UI, the hook script is automatically run. The loss of adduser (which I
think is what is being discussed here?) would be a severe loss for us;
we'd have to either dpkg-divert and wrap useradd (which doesn't sound advisable), fork KDE (or part of it) so that the settings dialog would
call our own special script rather than useradd, or ship a copy of
adduser downstream (which of course will break when KDE stops
integrating adduser because Debian dropped it, I assume they'll do
that).

If no one else wants to maintain adduser, I would ask Debian to please
do a call for maintainers before abandoning it. I won't immediately
step up and say "I'll do it" since I don't know if my workplace will
want to allocate my time to that, but it's not beyond the realm of
possibility.

Greetings
Marc
-- ---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)

From: [email protected]

On Mon, 28 Apr 2025 14:20:45 +0200, Matthias Urlichs
<[email protected]> wrote:

On 28.04.25 12:56, Marc Haber wrote:

Could somebody with an LWN subscription share a friends link?

Subscriptions to LWN are free for DDs, somebody (HP IIRC) sponsors them.

Yes, but it is suggested that the resources are limited, and since I
know that I don't have the round tuits to read LWN at least weekly, I
have decided to leave those resources to people who make better use of
it.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)

From: [email protected]

On Mon, Apr 28, 2025 at 1:43 AM Marc Haber <[email protected]> wrote:

On Sun, 27 Apr 2025 09:49:17 -0500, Aaron Rainbolt
<[email protected]> wrote:

adduser has one very useful piece of functionality useradd doesn't
have to my awareness, which my workplace absolutely depends on for
hardware we build and sell. That's the ability to execute a "hook
script" at user creation (/usr/local/sbin/adduser.local), which can
then do bits of user account specific setup that can't be done via the
skel mechanism. Yes, we could just write a script that calls useradd
and then runs our user setup stuff, but adduser is currently
integrated into KDE (the desktop environment our hardware uses), so
that when the end user creates a new user account in KDE's settings
UI, the hook script is automatically run.

Are you actually sure that KDE uses adduser? adduser as we are talking
about is a Debianism. The Red Hat World has its own adduser, which is
totally independent (and also totally incompatible), so I'd advise all
other programs which should be useful outside the Debian ecosystem to
not invoke adduser but to resort to standardized tools.

I am very sure, yes. This is the behavior on Ubuntu at least, I assume
on Red Hat-ish systems it calls something different.

Greetings
Marc
-- ---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)