On Tue, Jul 7, 2020 at 12:53 AM ToddAndMargo via users
<users(a)lists.fedoraproject.org> wrote:
On 2020-07-06 06:00, Tom H wrote:
> On Mon, Jul 6, 2020 at 7:48 AM ToddAndMargo via users
> <users(a)lists.fedoraproject.org> wrote:
>> On 2020-07-05 21:59, Tom H wrote:
>>> On Mon, Jul 6, 2020 at 1:22 AM ToddAndMargo via users
>>> <users(a)lists.fedoraproject.org> wrote:
>>>>
>>>> libvirt:x:977:root:@users
>>>
>>> Are you sure
>>>
>>> 1) That you can use netgroup notation when you're (presumably) not
>>> using nis/nisplus/ldap?
>>>
>>> 2) That you can nest a netgroup in a group? I've only seen/used
>>> netgroups used in "/etc/group" on a separate line, eg
>>>"+@netusers", to include the "netusers" netgroup using
>>> "nss_compat".
>>
>> It turn off the pol kit prompt
>
> Are you that it's not something else that's "turning off" polkit?
>
> I checked the "group(5)" man pages on my NetBSD and OpenBSD systems,
> on my Linux laptop, and in Solaris 8 man-page PDF. The first three
> describe the fourth field as a list of members and the members are
> users. Solaris even calls the fourth field "user-list". None of them
> even imply that a group name can be added to the list, with or
> without prepending "@".
>
> I created a group "todd", added myself to it, added "@todd" to
the
> "root" group in "/etc/{group,gshadow}" (I couldn't find an
> executable that would allow me to add a group to a group), and ran
> "grpck -r":
>
> # grpck -r
> group root: no user @todd
> delete member '@todd'? No
> shadow group root: no user @todd
> delete member '@todd'? No
> grpck: no changes
> root rebekah /root
> #
>
> "grpck" expects usernames as group members.
Taking in and taking out @users was repeatable.
And I used the universal configuration tool, know as "vi".
"vigr" is the right tool, given that there isn't a dedicated
executable to change "/etc/group" indirectly for your use-case.
But what I have noticed was in the man page, they state
that the users list is comma separated. I used a colon.
Try it with vi and a colon.
I used "vi" in the form of "vigr" (the group equivalent of
"vipw").
A colon?! That means that you're adding a fifth field.
Also, it would help if you showed me your line in /etc/groups
I don't see why but here goes
$ getent group todd
todd:x:1001:th
$ getent group root
root:x:0:@todd
$ id
uid=1000(th) gid=1000(th) groups=1000(th),10(wheel),1001(todd)
$