Firstyear eba8dff23a Ignore system users for UPG synthesiseation (#3297) ... Our unix resolver would attempt the right thing to synthesise user private groups on linux as these are an important security boundary. However, it turns out that almost every distro has botched their default system user accounts, and many are installed with numeric-only UPGs that don't resolve. In the case that later the user does attempt to fix that, because we synthesised as UPG for the system account, the user trying to add the UPG would now fail. In some cases this could cause system updates to be prevented from installing. This change limits UPG synth to user accounts only (uid > 1000) which is the common uid boundary on unix-like platforms.		2024-12-17 13:08:17 +10:00
..
common	Resolve pam services not always having a tty (#3176)	2024-11-05 00:49:33 +00:00
nss_kanidm	Add nss testframework and fallback when daemon offline (#3093)	2024-10-15 04:05:51 +00:00
pam_kanidm	Clippy Lints (#3255)	2024-11-30 06:13:26 +00:00
resolver	Ignore system users for UPG synthesiseation (#3297)	2024-12-17 13:08:17 +10:00