(PUP-2454) User ID's below 1000, not 500, are generally considered system users on OpenBSD

[jasperla]

Users can still modify this with 'uid_start' in adduser.conf, but in that
case they'd need to provide an actual value instead of 'true'.

[puppetcla]

CLA signed by all contributors.

[ffrank]

I'd like to see this change prefaced with a refactor so that this magic number is segregated into its own method. The change itself will then only affect that method.

As was mentioned during the PR, this change would also make sense for the 'Debian' value of operatingsystem. To that end, I'd prefer to see this done with a case statement, even though there are currently only those two cases apart from default.

[adrienthebo]

It looks like Debian system UIDs span from 100 to 999:

# /etc/login.defs
# System accounts
#SYS_UID_MIN>...>.......  100
#SYS_UID_MAX>...>.......  999

[ferventcoder]

Also http://www.debian.org/doc/manuals/system-administrator/ch-sysadmin-users.html

[jasperla]

Right, so we could consider accounts <= 999 to be system accounts (thereby ignoring 0 < x <= 99)? Come to think of it, for OpenBSD it should be 999 too since UID 1000 would be the first regular user account.

Shall I merge the OpenBSD and Debian case into a single case returning '999'?

[ffrank]

On 05/21/2014 08:14 PM, Jasper Lievisse Adriaanse wrote:

Shall I merge the OpenBSD and Debian case into a single case returning
'999'?

Fine by me.

[ffrank]

Argh dammit I just realized - this likely also applies to Ubuntu.

Perhaps it would be safer to rely on osfamily instead of operatingsystem?

[peterhuene]

Yeah, I think using osfamily here instead of operatingsystem is best since the Debian family all use 999. Also, doesn't FreeBSD do so as well? At least the ports documentation mentions the range 50-999 for package accounts.

@jasperla Can you push up that fix and possibly a spec example that tests system_users_max_uid for these osfamilys? I will then merge it in. Thanks!

[peterhuene]

Hi @jasperla. I'm going to close this PR in favor of GH-2736. I've amended your commit message and added some spec examples. Thanks again for your contribution!

[jasperla]

Sorry for not following up on this before, and thanks for taking care of it.