fa8ace3618
Before: `users.users.user1.group = "group-not-defined-anywhere-else"` would result in user1 having the primary group `nogroup`, assigned at activation time and only with a (easy to miss) warning from the activation script. This behaviour is a security issue becase no files should be owned by `nogroup` and it allows for unrelated users (and services) to accidentally have access to files they shouldn't have. After: The configuration above results in this eval error: - The following users have a primary group that is undefined: user1 Hint: Add this to your NixOS config: users.groups.group-not-defined-anywhere-else = {}; |
||
---|---|---|
.. | ||
fonts | ||
gtk | ||
krb5 | ||
xdg | ||
appstream.nix | ||
console.nix | ||
debug-info.nix | ||
gnu.nix | ||
i18n.nix | ||
iproute2.nix | ||
ldap.nix | ||
locale.nix | ||
malloc.nix | ||
mysql.nix | ||
networking.nix | ||
nix-channel.nix | ||
nix-flakes.nix | ||
nix-remote-build.nix | ||
nix.nix | ||
no-x-libs.nix | ||
nsswitch.nix | ||
power-management.nix | ||
pulseaudio.nix | ||
qt.nix | ||
resolvconf.nix | ||
shells-environment.nix | ||
stevenblack.nix | ||
swap.nix | ||
sysctl.nix | ||
system-environment.nix | ||
system-path.nix | ||
terminfo.nix | ||
unix-odbc-drivers.nix | ||
update-users-groups.pl | ||
users-groups.nix | ||
vte.nix | ||
zram.nix |