Axel Thimm (Axel.Thimm(a)ATrpms.net) said:
Can we assume that the uid/gids < 100 were always considered
sacred to
the users, e.g. only to be set/modified by the vendor and not misused
for local purposes? In other words, can we assume that these uid/gid
are under the authority of the "setup" package?
Yes, absolutely.
If we can answer this with yes (which IMHO we should), then we can
have "setup" upgrade passwd/group by removing all uid/gid < 100 in the
files found on the system and insert its fresh ones. This would not
only solve the issues at hand, but is an important mechanism to have
in place for the "setup" package in general.
No, you can't. No prereqs allowed that early in the transaction.
Bill