X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=man%2Fsysusers.d.xml;h=ac2db98853a367e2926c7593e80920b263901f6f;hb=63c372cb9df3bee01e3bf8cd7f96f336bddda846;hp=00eb7ec942e0f60b62c41a93512eba75f3593348;hpb=938a560b7608e8906134ed7d717c3f5aa459a760;p=elogind.git
diff --git a/man/sysusers.d.xml b/man/sysusers.d.xml
index 00eb7ec94..ac2db9885 100644
--- a/man/sysusers.d.xml
+++ b/man/sysusers.d.xml
@@ -19,7 +19,8 @@
You should have received a copy of the GNU Lesser General Public License
along with systemd; If not, see .
-->
-
+
sysusers.d
@@ -77,13 +78,14 @@
configuration.
The file format is one line per user or group
- containing name, ID and GECOS field description:
+ containing name, ID, GECOS field description and home directory:
# Type Name ID GECOS
u httpd 440 "HTTP User"
u authd /usr/bin/authd "Authorization user"
g input - -
-m authd input
+m authd input
+u root 0 "Superuser" /root
Type
@@ -102,12 +104,14 @@ m authd input
group will be set to the group
bearing the same name. The
user's shell will be set to
- /sbin/login,
- the home directory to
- /. The
- account will be created
- disabled, so that logins are
- not allowed.
+ /sbin/nologin,
+ the home directory to the
+ specified home directory, or
+ / if none
+ is given. The account will be
+ created disabled, so that
+ logins are not
+ allowed.
@@ -131,6 +135,25 @@ m authd input
will be implicitly
created.
+
+
+ r
+ Add a range of
+ numeric UIDs/GIDs to the pool
+ to allocate new UIDs and GIDs
+ from. If no line of this type
+ is specified the range of
+ UIDs/GIDs is set to some
+ compiled-in default. Note that
+ both UIDs and GIDs are
+ allocated from the same pool,
+ in order to ensure that users
+ and groups of the same name
+ are likely to carry the same
+ numeric UID and
+ GID.
+
+
@@ -138,7 +161,7 @@ m authd input
Name
The name field specifies the user or
- group name. It should be be shorter than 31
+ group name. It should be shorter than 31
characters and avoid any non-ASCII characters,
and not begin with a numeric character. It is
strongly recommended to pick user and group
@@ -151,6 +174,10 @@ m authd input
For m lines this
field should contain the user name to add to a
group.
+
+ For lines of type r
+ this field should be set to
+ -.
@@ -160,8 +187,8 @@ m authd input
g the numeric 32bit UID or
GID of the user/group. Do not use IDs 65535 or
4294967295, as they have special placeholder
- meanings. Specify "-" for automatic UID/GID
- allocation for the user or
+ meanings. Specify - for
+ automatic UID/GID allocation for the user or
group. Alternatively, specify an absolute path
in the file system. In this case the UID/GID
is read from the path's owner/group. This is
@@ -172,6 +199,14 @@ m authd input
For m lines this
field should contain the group name to add to
a user to.
+
+ For lines of type r
+ this field should be set to a UID/GID range in
+ the format FROM-TO where
+ both values are formatted as decimal ASCII
+ numbers. Alternatively, a single UID/GID may
+ be specified formatted as decimal ASCII
+ numbers.
@@ -183,13 +218,32 @@ m authd input
Only applies to lines of type
u and should otherwise be
- left unset.
+ left unset, or be set to
+ -.
+
+
+
+ Home Directory
+
+ The home directory for a new system
+ user. If omitted defaults to the root
+ directory. It is recommended to not
+ unnecessarily specify home directories for
+ system users, unless software strictly
+ requires one to be set.
+
+ Only applies to lines of type
+ u and should otherwise be
+ left unset, or be set to
+ -.
+
+
- Overriding vendor configuration
+ Idempotence
Note that systemd-sysusers
will do nothing if the specified users or groups
@@ -197,31 +251,13 @@ m authd input
sysusers.d vendor configuration,
except to block certain users or groups from being
created.
-
- Files in /etc/sysusers.d
- override files with the same name in
- /usr/lib/sysusers.d and
- /run/sysusers.d. Files in
- /run/sysusers.d override files
- with the same name in
- /usr/lib/sysusers.d. The scheme is the same as for
- tmpfiles.d5,
- except for the directory name.
-
- If the administrator wants to disable a
- configuration file supplied by the vendor, the
- recommended way is to place a symlink to
- /dev/null in
- /etc/sysusers.d/ bearing the
- same filename.
See Also
systemd1,
- systemd-sysusers8,
- tmpfiles.d5
+ systemd-sysusers8