From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp0.migadu.com ([2001:41d0:403:4876::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms13.migadu.com with LMTPS id eAGlGNTJx2bqegAAqHPOHw:P1 (envelope-from ) for ; Thu, 22 Aug 2024 23:29:24 +0000 Received: from aspmx1.migadu.com ([2001:41d0:403:4876::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp0.migadu.com with LMTPS id eAGlGNTJx2bqegAAqHPOHw (envelope-from ) for ; Fri, 23 Aug 2024 01:29:24 +0200 X-Envelope-To: larch@yhetil.org Authentication-Results: aspmx1.migadu.com; dkim=pass header.d=debbugs.gnu.org header.s=debbugs-gnu-org header.b=ad+yk6qr; dkim=fail ("headers rsa verify failed") header.d=systemreboot.net header.s=default header.b=myLnvqGD; spf=pass (aspmx1.migadu.com: domain of "guix-patches-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-patches-bounces+larch=yhetil.org@gnu.org"; dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=systemreboot.net (policy=none) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1724369364; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:resent-cc:resent-from:resent-sender: resent-message-id:in-reply-to:in-reply-to:references:references: list-id:list-help:list-unsubscribe:list-subscribe:list-post: dkim-signature; bh=/v/OIVwLKls4iaMJi3yKvWnaAy2WPtJMK3NBKgjtMU8=; b=kbWgKdceXn7RlvC+txxoZRGxWarg0Lk0Ekqb/gF3wxwyzevBONl4eZRJegFzgNWI+nYeqH XsQJ8ZabBIvcr3n/Y+RBxCuLa6Y3ietbIdkPLbPVyyUrv3hy/1SDFvqdtcZRDi0x0gU/FU dwJt/cx0+Up52oF2zS1YGgrth2I4dNw8Ix8Uaqt+SzM5qYAEAmuxj2fxMdGoo33aWcSK5Y JhDXOHMRPUPuqiYO4tUor6DYhU8u3kY4ib32xMoxpfIQI1J6Od1Pkyha5QzpntVbrSrQGl E38URheYuz2TGJcB30ouICjfGQNHLLgTghNUJzhwB+6WlNi7v6NjMF5TSaZkwA== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=pass header.d=debbugs.gnu.org header.s=debbugs-gnu-org header.b=ad+yk6qr; dkim=fail ("headers rsa verify failed") header.d=systemreboot.net header.s=default header.b=myLnvqGD; spf=pass (aspmx1.migadu.com: domain of "guix-patches-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-patches-bounces+larch=yhetil.org@gnu.org"; dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=systemreboot.net (policy=none) ARC-Seal: i=1; s=key1; d=yhetil.org; t=1724369364; a=rsa-sha256; cv=none; b=eibcAjxMlXaLTJxI0xKzau9tiACM8NRye1EEMky/eK6MiaTCTmjGWHuc8IYkqCGIWs4x/7 MVPwrnEwbn7dytcWZddQvxOBUKmBMGz4BgHrFYsef/t9JdOivtpJ+ycmYeoGprAJZcXRJA M6jHErBfA+eRR/OGjZTQkdDou2lbePrF28KVVhP5X3iiXSM8WlmEc1caAdjasLJhula++2 kyl3HdVYlmuRum665xdwjfPK3EwPBzHOvaE2803Jd7g6repT3HsfHnulGJc4aYpfQQ5tQy iqlCs/0JktgSGYzD7AZAT7VeK49aXRioDb7v2D9CSRjlhBiUkiSZp/cXQecsTw== Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 39EB570A07 for ; Fri, 23 Aug 2024 01:29:23 +0200 (CEST) Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1shHEz-0000iI-Ti; Thu, 22 Aug 2024 19:29:18 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1shHEy-0000hn-Jm for guix-patches@gnu.org; Thu, 22 Aug 2024 19:29:16 -0400 Received: from debbugs.gnu.org ([2001:470:142:5::43]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1shHEy-0004Qo-1j for guix-patches@gnu.org; Thu, 22 Aug 2024 19:29:16 -0400 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debbugs.gnu.org; s=debbugs-gnu-org; h=MIME-Version:Date:References:In-Reply-To:From:To:Subject; bh=/v/OIVwLKls4iaMJi3yKvWnaAy2WPtJMK3NBKgjtMU8=; b=ad+yk6qruUCNBX342/pCTBSS5C1FShU+TwNskJVnjJ87wLLZthSfRla8lyFh07xlPRVown3rDnSVZeTpdw/OQ8QpslOSOuZyAqxuqsORut+g2tYcmNley9JlUHzQPSxOlkTVcip0Qo5fGcn5DrqcLara2fZhnSOS8xKvoJlrdS/NzARl+JOzwC6qrD0NJev4s8Ng99+LlWGWtwiusWyBDELszouYyVM9YV5gTuwdBGiDwfEavSWKBe0ecB9k+zpBC+sy/tARG36vksM0g8WCp3Ju0+ooeTxlJ3oKwRwnfG+UWe9eHzbhVfFu60g0S463F1kA83gZB4EMzXCDbVZ7Eg==; Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1shHFi-0002N7-Bo for guix-patches@gnu.org; Thu, 22 Aug 2024 19:30:02 -0400 X-Loop: help-debbugs@gnu.org Subject: [bug#72398] [PATCH v2] services: Add readymedia-service-type. Resent-From: Arun Isaac Original-Sender: "Debbugs-submit" Resent-CC: guix-patches@gnu.org Resent-Date: Thu, 22 Aug 2024 23:30:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 72398 X-GNU-PR-Package: guix-patches X-GNU-PR-Keywords: patch To: Fabio Natali , Bruno Victal Cc: 72398@debbugs.gnu.org Received: via spool by 72398-submit@debbugs.gnu.org id=B72398.17243693459025 (code B ref 72398); Thu, 22 Aug 2024 23:30:02 +0000 Received: (at 72398) by debbugs.gnu.org; 22 Aug 2024 23:29:05 +0000 Received: from localhost ([127.0.0.1]:38559 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1shHEn-0002LU-Ci for submit@debbugs.gnu.org; Thu, 22 Aug 2024 19:29:05 -0400 Received: from mugam.systemreboot.net ([139.59.75.54]:54536) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1shHEl-0002L8-EF for 72398@debbugs.gnu.org; Thu, 22 Aug 2024 19:29:04 -0400 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=systemreboot.net; s=default; h=Content-Type:MIME-Version:Message-ID:Date: References:In-Reply-To:Subject:Cc:To:From:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=/v/OIVwLKls4iaMJi3yKvWnaAy2WPtJMK3NBKgjtMU8=; b=myLnvqGD0U78xYyOCGTn96QlA7 47E2jK/+YKgn45zQr5SalXuCuKTdop6FTrN3wxyd/C+NtDfSvo5U/OJC+wwE987h7tyUQkhHFuYMw mc+GS2AX9dq83Nej94Fc34dR9XANu5yWgu4i77yxUg96HA46uFqO9GTOEJDTRKkczLOrDMWtjTcoB aVgH6Oqe4kJu+1m70J2xP8ilhZjFt7MHv69Is57BvcXb98fxDfvdJXvZkfF7xanc83qfLBtdgTN+x g9QbeNz0diColto9o8k/w6W9wmUyInVBdCzo0BoNxwnf7kCJ8+HfC9agAYEO+UC2ETO+fpmHl9jvE /yoiAXsg==; Received: from [192.168.2.1] (port=40406 helo=localhost) by systemreboot.net with esmtpsa (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.98) (envelope-from ) id 1shH90-000000007Di-0oOb; Fri, 23 Aug 2024 00:23:06 +0100 From: Arun Isaac In-Reply-To: <878qwoj25q.fsf@fabionatali.com> References: <87jzglwcqh.fsf@systemreboot.net> <87h6bhicgf.fsf@fabionatali.com> <4fd9b012-4783-4017-b8a3-47485c0cd657@makinata.eu> <878qwoj25q.fsf@fabionatali.com> Date: Fri, 23 Aug 2024 00:28:09 +0100 Message-ID: <87r0agp27q.fsf@systemreboot.net> MIME-Version: 1.0 Content-Type: text/plain X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: guix-patches@gnu.org List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-patches-bounces+larch=yhetil.org@gnu.org Sender: guix-patches-bounces+larch=yhetil.org@gnu.org X-Migadu-Country: US X-Migadu-Flow: FLOW_IN X-Spam-Score: -5.52 X-Migadu-Queue-Id: 39EB570A07 X-Migadu-Scanner: mx10.migadu.com X-Migadu-Spam-Score: -5.52 X-TUID: viaq8GcF7qtb >>> +(define %readymedia-user-account "readymedia") >>> +(define %readymedia-user-group "readymedia") >> >> I think it would be better to expose this in the >> readymedia-configuration record-type and have it be oriented around >> user-account and user-group record-types, i.e. > > Fixed, although I'm not sure I'm 100% on board with this. > > I'm not completely sure but I have the feeling that a configurable > ReadyMedia user might theoretically weaken the POLA, e.g. if the user > chose their own user for this service. > > Following up on a related conversation we started on IRC, I suppose we > should either go all in with flexibility (i.e. allow the user to switch > off the least-authority-wrapper and set the service user) or adopt a > slightly more rigid approach (mandated POLA and fixed user). > > I think I might have a slight preference for the latter, prioritising > compartmentalisation over flexibility - but I'm keen to know what you, > Arun, and all other Guixers may think about this. I am with Fabio on this. Many (almost all, maybe?) services use a fixed user account that cannot be configured. And, that's ok. I don't think we should make the least authority wrapper optional either. Making it optional would be too much complexity for little benefit. The goal of Guix services isn't to provide total configurability, but rather to be slightly opinionated so as to nudge users in the right direction. Let me know if I'm missing something important. Cheers!