tech-pkg: Re: User that I didn't add appearing on NetBSD system

Subject: Re: User that I didn't add appearing on NetBSD system
To: Eric <kellybelly@gwi.net>
From: Gilles Gravier <Gilles@Gravier.org>
List: tech-pkg
Date: 01/06/2006 09:36:45
This is a cryptographically signed message in MIME format.

--------------ms000800080308060608080100
Content-Type: multipart/alternative;
 boundary="------------060006010906020808060705"

This is a multi-part message in MIME format.
--------------060006010906020808060705
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 8bit

If you delete the user, the sasl functionality won't work anymore. This 
may create issues with authentication in KDE.

So... DON'T delete the user.

Note that the password is not set so that nobody can log in as this 
user... so it does't pose a security risk... There are serveral other 
users like this... daemon, operator, games, postfix, named, ntpd, sshd, 
uucp, www (www if you install Apache)... They don't create security risks.

Gilles.

Eric wrote:

> Magnus Eriksson wrote:
>
>> On Thu, 5 Jan 2006, Steven M. Bellovin wrote:
>>
>>>> You probably added the Cyrus imapd client or cyrus-saslauth stuff.
>>>>
>>>> cyrus:*:1003:6:cyrus-sasl cyrus user:/nonexistent:/bin/sh
>>>
>>>
>>
>>> Perhaps packages that add userids should indicate that in the gecos
>>> field:
>>>
>>> cyrus:*:1003:6:cyrus-sasl cyrus user,pkg-imapd:/nonexistent:/bin/sh
>>>
>>> or some such. (tech-pkg added to the cc list.)
>>
>>
>>
>> Preferably also with a notice in big fat red letters saying "This is 
>> not a guarantee your system has not been compromised, check that you 
>> really did install this package and that it should create users!" - 
>> but perhaps that is too much to ask for.
>>
>>
>> MAgnus
>>
>>
>>
> It appears that cyrus-sasl was installed as a dependency when I 
> installed KDE. Is there any harm in deleting its user?


-- 
/*Gilles Gravier*/ *=* *Gilles@Gravier.org* <mailto:Gilles@Gravier.org> 
*=* *http://www.gravier.org/*
ICQ : *77488526* 
<http://www.icq.com/whitepages/about_me.php?Uin=77488526> * || *MSN 
Messenger : Gilles@Gravier.org <http://members.msn.com/Gilles@Gravier.org>*
*Skype : ggravier <callto://ggravier>* || *Y! : ggravier 
<http://profiles.yahoo.com/ggravier> || AOL : gillesgravier 
<aim:goim?screenname=gillesgravier>
PGP Key ID : *0x8DE6D026* 
<http://pgp.mit.edu:11371/pks/lookup?search=0x8DE6D026&op=index>
"Chastity is its own punishment." (/Solomon Short/) [/David Gerrold/]
"De toutes les aberrations sexuelles, la chasteté est la plus 
aberrante." [Anatole France]


--------------060006010906020808060705
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
  <title></title>
</head>
<body bgcolor="#ffffff" text="#336666">
If you delete the user, the sasl functionality won't work anymore. This
may create issues with authentication in KDE.<br>
<br>
So... DON'T delete the user.<br>
<br>
Note that the password is not set so that nobody can log in as this
user... so it does't pose a security risk... There are serveral other
users like this... daemon, operator, games, postfix, named, ntpd, sshd,
uucp, www (www if you install Apache)... They don't create security
risks.<br>
<br>
Gilles.<br>
<br>
Eric wrote:
<blockquote cite="mid43BD2A86.2030409@gwi.net" type="cite">Magnus
Eriksson wrote:
  <br>
  <br>
  <blockquote type="cite">On Thu, 5 Jan 2006, Steven M. Bellovin wrote:
    <br>
    <br>
    <blockquote type="cite">
      <blockquote type="cite">You probably added the Cyrus imapd client
or cyrus-saslauth stuff.
        <br>
        <br>
cyrus:*:1003:6:cyrus-sasl cyrus user:/nonexistent:/bin/sh
        <br>
      </blockquote>
      <br>
    </blockquote>
    <br>
    <blockquote type="cite">Perhaps packages that add userids should
indicate that in the gecos
      <br>
field:
      <br>
      <br>
cyrus:*:1003:6:cyrus-sasl cyrus user,pkg-imapd:/nonexistent:/bin/sh
      <br>
      <br>
or some such. (tech-pkg added to the cc list.)
      <br>
    </blockquote>
    <br>
    <br>
Preferably also with a notice in big fat red letters saying "This is
not a guarantee your system has not been compromised, check that you
really did install this package and that it should create users!" - but
perhaps that is too much to ask for.
    <br>
    <br>
    <br>
MAgnus
    <br>
    <br>
    <br>
    <br>
  </blockquote>
It appears that cyrus-sasl was installed as a dependency when I
installed KDE. Is there any harm in deleting its user?
  <br>
</blockquote>
<br>
<div class="moz-signature">-- <br>
<meta content="text/html; " http-equiv="content-type">
<title>Signature Home Chastity</title>
<meta content="Gilles Gravier" name="author">
<div style="text-align: left;">
<table
 style="text-align: left; background-color: rgb(102, 102, 102); width: 500px; height: 73px;"
 border="1" cellpadding="3" cellspacing="3">
  <tbody>
    <tr>
      <td
 style="text-align: center; vertical-align: middle; background-color: rgb(204, 204, 204); white-space: nowrap;">
      <div
 style="text-align: center; background-color: rgb(204, 204, 204);"><tt><font
 color="#7d6eaf"><i><b>Gilles Gravier</b></i> <b>=</b> </font><a
 href="mailto:Gilles@Gravier.org"><font color="#000000"><b>Gilles@Gravier.org</b></font></a><font
 color="#7d6eaf"> <b>=</b> </font><a href="http://www.gravier.org/"><font
 color="#000000"><b>http://www.gravier.org/</b></font></a></tt><br>
      </div>
      <div
 style="text-align: center; background-color: rgb(204, 204, 204);"><tt><font
 color="#009900"><span
 style="font-family: monospace; color: rgb(0, 0, 0); font-weight: bold;"></span></font><font
 color="#000099">ICQ :</font> <a
 href="http://www.icq.com/whitepages/about_me.php?Uin=77488526"><font
 color="#009900"><b>77488526</b></font></a></tt>&nbsp;<tt><font
 color="#009900"><b><span
 style="font-family: monospace; color: rgb(0, 0, 0);"> || </span></b></font></tt><tt><font
 color="#000099">MSN Messenger : <a
 href="http://members.msn.com/Gilles@Gravier.org"><span
 style="color: rgb(0, 153, 0); font-weight: bold;">Gilles@Gravier.org</span></a></font></tt><tt><font
 color="#009900"><b><span
 style="font-family: monospace; color: rgb(0, 0, 0);"><br>
      </span></b></font></tt><span
 style="font-family: monospace; color: rgb(0, 0, 153);">Skype</span><tt><font
 color="#000099"><span style="color: rgb(0, 0, 153);"> :&nbsp;</span><a
 href="callto://ggravier"><span
 style="font-weight: bold; color: rgb(0, 153, 0);">ggravier</span></a></font></tt><tt><font
 color="#009900"><b><span
 style="font-family: monospace; color: rgb(0, 0, 0);"> || </span></b></font></tt><tt><font
 color="#000099"><span style="color: rgb(0, 153, 0);"></span><span
 style="font-weight: bold;"></span>Y! : <a
 href="http://profiles.yahoo.com/ggravier"><span
 style="color: rgb(0, 153, 0); font-weight: bold;">ggravier</span></a></font></tt><tt
 style="font-weight: bold;"><font color="#009900"><span
 style="font-family: monospace; color: rgb(0, 0, 0);"> || </span></font></tt><tt><font
 color="#000099">AOL : <a href="aim:goim?screenname=gillesgravier"><span
 style="color: rgb(0, 153, 0); font-weight: bold;">gillesgravier</span></a><br>
      </font></tt><tt><font color="#000099">PGP Key ID :</font> <a
 href="http://pgp.mit.edu:11371/pks/lookup?search=0x8DE6D026&amp;op=index"><font
 color="#009900"><b>0x8DE6D026</b></font></a></tt><br>
      </div>
      <div
 style="text-align: center; background-color: rgb(204, 204, 204);"><tt>"Chastity
is its own punishment." (<font color="#999999"><i>Solomon Short</i></font>)
[<font color="#666666"><i>David Gerrold</i></font>]<br>
      </tt><span style="font-family: monospace;">"De toutes les
aberrations sexuelles, la chastet&eacute; est la plus aberrante." [<span
 style="font-style: italic;"><font color="#666666">Anatole France</font></span>]</span><br>
      </div>
      </td>
    </tr>
  </tbody>
</table>
</div>
</div>
</body>
</html>

--------------060006010906020808060705--

--------------ms000800080308060608080100
Content-Type: application/x-pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature
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--------------ms000800080308060608080100--