X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=elogind.git;a=blobdiff_plain;f=man%2Fsysusers.d.xml;h=ac2db98853a367e2926c7593e80920b263901f6f;hp=40f8715bc0bbea51606c6508a3ece26c2b1d89bc;hb=a2e0337875addaf08225fbf9b231435ba12a88b5;hpb=932ad62b84165b0acf690ea34c4b8083657ae244
diff --git a/man/sysusers.d.xml b/man/sysusers.d.xml
index 40f8715bc..ac2db9885 100644
--- a/man/sysusers.d.xml
+++ b/man/sysusers.d.xml
@@ -19,7 +19,8 @@
You should have received a copy of the GNU Lesser General Public License
along with systemd; If not, see .
-->
-
+
sysusers.d
@@ -53,41 +54,38 @@
Description
systemd-sysusers uses the
- files from /usr/lib/sysusers.d/
+ files from sysusers.d directory
to create system users and groups at package
- installation or boot time. This tool may be used for
- allocating system users and groups only, it is not
+ installation or boot time. This tool may be used to
+ allocate system users and groups only, it is not
useful for creating non-system users and groups, as it
- accessed /etc/passwd and
+ accesses /etc/passwd and
/etc/group directly, bypassing
- any more complex user database, for example any
+ any more complex user databases, for example any
database involving NIS or LDAP.
-
- File Format
-
- Each file shall be named in the style of
- package.conf.
+ Configuration Format
- All files are sorted by their filename in
- lexicographic order, regardless of which of the
- directories they reside in. If multiple files specify
- the same user or group, the entry in the file with the
- lexicographically earliest name will be applied, all
- all other conflicting entries will be logged as
- errors. Users and groups are
- processed in the order they are listed.
+ Each configuration file shall be named in the
+ style of
+ package.conf
+ or
+ package-part.conf.
+ The second variant should be used when it is desirable
+ to make it easy to override just this part of
+ configuration.
The file format is one line per user or group
- containing name, ID and GECOS field description:
+ containing name, ID, GECOS field description and home directory:
# Type Name ID GECOS
u httpd 440 "HTTP User"
u authd /usr/bin/authd "Authorization user"
g input - -
-m authd input
+m authd input
+u root 0 "Superuser" /root
Type
@@ -106,12 +104,14 @@ m authd input
group will be set to the group
bearing the same name. The
user's shell will be set to
- /sbin/login,
- the home directory to
- /. The
- account will be created
- disabled, so that logins are
- not allowed.
+ /sbin/nologin,
+ the home directory to the
+ specified home directory, or
+ / if none
+ is given. The account will be
+ created disabled, so that
+ logins are not
+ allowed.
@@ -135,6 +135,25 @@ m authd input
will be implicitly
created.
+
+
+ r
+ Add a range of
+ numeric UIDs/GIDs to the pool
+ to allocate new UIDs and GIDs
+ from. If no line of this type
+ is specified the range of
+ UIDs/GIDs is set to some
+ compiled-in default. Note that
+ both UIDs and GIDs are
+ allocated from the same pool,
+ in order to ensure that users
+ and groups of the same name
+ are likely to carry the same
+ numeric UID and
+ GID.
+
+
@@ -142,7 +161,7 @@ m authd input
Name
The name field specifies the user or
- group name. It should be be shorter than 31
+ group name. It should be shorter than 31
characters and avoid any non-ASCII characters,
and not begin with a numeric character. It is
strongly recommended to pick user and group
@@ -155,6 +174,10 @@ m authd input
For m lines this
field should contain the user name to add to a
group.
+
+ For lines of type r
+ this field should be set to
+ -.
@@ -164,8 +187,8 @@ m authd input
g the numeric 32bit UID or
GID of the user/group. Do not use IDs 65535 or
4294967295, as they have special placeholder
- meanings. Specify "-" for automatic UID/GID
- allocation for the user or
+ meanings. Specify - for
+ automatic UID/GID allocation for the user or
group. Alternatively, specify an absolute path
in the file system. In this case the UID/GID
is read from the path's owner/group. This is
@@ -176,6 +199,14 @@ m authd input
For m lines this
field should contain the group name to add to
a user to.
+
+ For lines of type r
+ this field should be set to a UID/GID range in
+ the format FROM-TO where
+ both values are formatted as decimal ASCII
+ numbers. Alternatively, a single UID/GID may
+ be specified formatted as decimal ASCII
+ numbers.
@@ -187,9 +218,39 @@ m authd input
Only applies to lines of type
u and should otherwise be
- left unset.
+ left unset, or be set to
+ -.
+
+ Home Directory
+
+ The home directory for a new system
+ user. If omitted defaults to the root
+ directory. It is recommended to not
+ unnecessarily specify home directories for
+ system users, unless software strictly
+ requires one to be set.
+
+ Only applies to lines of type
+ u and should otherwise be
+ left unset, or be set to
+ -.
+
+
+
+
+
+
+
+ Idempotence
+
+ Note that systemd-sysusers
+ will do nothing if the specified users or groups
+ already exist, so normally there no reason to override
+ sysusers.d vendor configuration,
+ except to block certain users or groups from being
+ created.