Ubuntu
adduser package

adduser ignores NIS

Bug #182721 reported by Morten Kjeldgaard
8
Affects Status Importance Assigned to Milestone
adduser (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

Binary package hint: adduser

It appears adduser ignores NIS. The problem appeared for me when install the sbuild package, which makes the following call in the postinst maintainer script:

if [ -z "`getent group sbuild`" ]; then
  adduser --group --quiet sbuild
fi

The result was, that the sbuild group was created in /etc/group with gid 1002. However, that is the gid of a NIS user.

Thus, the gid is un-intentionally shared, which may potentially be a security issue.

Since adduser is typically used in maintainer scripts, it is logical to fix the problem in that package. Perhaps, adduser should consult /etc/nsswitch, and see where password and group information may come from.

Revision history for this message
Morten Kjeldgaard (mok0) wrote :

Perhaps related to the following:

Debian bug 248500 in adduser "adduser: do not re-use uids used once" [Wishlist,Open] http://bugs.debian.org/248500

Revision history for this message
ulul (ulul) wrote :

Hi,
I tested it in 8.04 (hardy)
Behaviour seems fine to me.
Added user2 with adduser. user1 was in the NIS passwd map with id 1001 and gid 1001
adduser crated a local (/etc) user and group with uid an gid 1002 (and anyway the output clearly indicates that NIS is checked.

With which distribution did you have that behaviour ?

ulul

Revision history for this message
xteejx (xteejx-deactivatedaccount) wrote :

We are closing this bug report because it lacks the information we need to investigate the problem, as described in the previous comments. Please reopen it if you can give us the missing information, and don't hesitate to submit bug reports in the future. To reopen the bug report you can click on the current status, under the Status column, and change the Status back to "New". Thanks again!

Changed in adduser (Ubuntu):
status: New → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.