Subject: Re: pkg/27195 (removing amanda package suggests removing the "operator" group)
To: None <gnats-bugs@NetBSD.org>
From: Simon Burge <simonb@NetBSD.org>
List: pkgsrc-bugs
Date: 10/20/2006 16:53:50
joerg@netbsd.org wrote:

> Synopsis: removing amanda package suggests removing the "operator" group
> 
> State-Changed-From-To: open->feedback
> State-Changed-By: joerg@netbsd.org
> State-Changed-When: Sat, 23 Sep 2006 14:32:54 +0000
> State-Changed-Why:
> pkgsrc has done refcounting for groups and users for a while now.
> It records when a group or user was already existing (+PREEXISTING),
> so this should not happen any more. Is this issue fixed?

This still appears to be a problem.

   bigkev 36> make install
   ...
   bigkev 37> make deinstall
   ===> Deinstalling for amanda-common-2.4.4p4nb4
   => Becoming ``root'' to make su-deinstall (priv)
   Running /usr/bin/env  /usr/sbin/pkg_delete -K /var/db/pkg  amanda-common-2.4.4p4nb4
   ===========================================================================
   The following users are no longer being used by amanda-common-2.4.4p4nb4,
   and they can be removed if no other software is using them:
   
           backup
   
   ===========================================================================
   ===========================================================================
   The following groups are no longer being used by amanda-common-2.4.4p4nb4,
   and they can be removed if no other software is using them:
   
           operator
   
   ===========================================================================
   => Dropping ``root'' privileges.


In /var/db/pkg.refcount I've got no "users" or "groups" directories
before the install.  After the install there's:

   bigkev 116> find /var/db/pkg.refcount/[gu]*
   /var/db/pkg.refcount/groups
   /var/db/pkg.refcount/groups/operator
   /var/db/pkg.refcount/groups/operator/+PREEXISTING
   /var/db/pkg.refcount/groups/operator/amanda-common-2.4.4p4nb4
   /var/db/pkg.refcount/users
   /var/db/pkg.refcount/users/backup
   /var/db/pkg.refcount/users/backup/+PREEXISTING
   /var/db/pkg.refcount/users/backup/amanda-common-2.4.4p4nb4
   bigkev 117> find /var/db/pkg.refcount/[gu]* -name +PRE\* | xargs cat
   amanda-common-2.4.4p4nb4
   amanda-common-2.4.4p4nb4

It looks like the refcounting doesn't include existing "system"
accounts.  I'm also not sure how it would do that, making a distinction
between accounts that were originally created by pkgsrc and pre-existing
accounts on the system.  It'd be nice to think of a way that doesn't
need a hard-coded list of OS-dependant system users and groups...

Simon.