On Sat, Oct 5, 2024 at 3:45 AM Zbigniew Jędrzejewski-Szmek <zbyszek@xxxxxxxxx> wrote: > > On Fri, Oct 04, 2024 at 01:20:40PM -0400, Neal Gompa wrote: > > It's fairly normal these days that the users are self-contained and > > otherwise local, *except* for login credentials. This use-case is > > important to support because this is pretty much how business laptops > > need to work. > > > > In the long past, the dichotomy was clearer: you either had local > > users with local storage, or centrally managed users with remote > > storage. But nowadays it's always local storage, just with either > > local authentication or remote authentication. This also includes > > being able to cache remote authentication records (e.g. SSSD) for > > brief offline periods for logging in anyway. > > > > So from my point of view, homed *should not* be incompatible with this > > use-case, even though it currently is. > > I would just use normal users for that case. This functionality is > not going away and there would be no benefit from somehow shoehorning > remotely-defined users into systemd-homed. > There is: automatic encryption of user data, and tying the user-data decryption to central login credentials. The whole reason we explored homed was for that, and there is very little benefit to doing any integration work for homed if we can't universally reap the benefits of it. -- 真実はいつも一つ!/ Always, there's only one truth! -- _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue