Level up your business security with free, on-demand training and certification. Explore 1Password Academy today →
Forum Discussion
Why the requirement for group id >= 1000?
In various places people have had to discover, and workaround the fact that the 1Password Browser-Helper and CLI not only require being in a specific group (fine), and have setgid set (also fine), bu...
There is a de facto standard for Linux and some other unix platforms for the IDs for users and groups by which human users have UIDs and GIDs starting at 1000. Look for `UID_MIN` and `GID_MIN` in useradd(8) and groupadd(8).
Note that this is distinct from the reserved or built-in system UIDs and GIDs, which are traditionally below 101.
After writing that, I see that systemd-sysusers(8) references Users, Groups, UIDs and GIDs on systemd Systems.
There is a de facto standard for Linux and some other unix platforms for the IDs for users and groups by which human users have UIDs and GIDs starting at 1000.
Yes I'm aware of that. I don't understand why the `onepassword` group, which is a group for software, not a human user requires the GID to be greater than 1000.
I'm aware of that.
I strongly suspected you would be, but since you didn't indicate so and for the audience, I thought it worth mentioning.
I don't understand why the `onepassword` group, which is a group for software, not a human user requires the GID to be greater than 1000.
Nor do I, but I suspect that the use of SETGID is a factor, since it means that users' processes will be running with this GID. That said, it seems wrong to tread on ground which should be exclusive to us meat machines.
From the ancient low number IDs to the countdown-from-999 assignments for "system" IDs, I don't even have an opinion on what right in this case (which is a rarity).I hope that someone better informed weighs in with a good explanation.
