1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
|
5 |
On Apr 11, 2007, at 6:05 AM, Michael Haubenwallner wrote: |
6 |
> Thing is that 'chown -R root:0' works on linux, while on non-linux it |
7 |
> does not. |
8 |
> |
9 |
> I'm unsure how to do in prefix: |
10 |
> 1) avoid chown in prefix (as the patch does currently) |
11 |
> 2) chown to "$PORTAGE_INST_USER:$PORTAGE_INST_GID" instead of "root:0" |
12 |
|
13 |
This has been perennial question for me, since I starting moving many |
14 |
ebuilds to prefix, so I'd like to start a discussion on it. |
15 |
|
16 |
Obviously, user-privilege use of prefix-portage is sort the main way, |
17 |
as far as I can tell, that people use it right now. As a hack -- and |
18 |
as I mainly work on Darwin, atm -- I've been wrapping or skipping |
19 |
chown/chmod/fperms/etceteras calls in 'if [ "${KERNEL}" == |
20 |
"Darwin" ]', and ewarn'ng that "this operation is not happening'. |
21 |
This has worked -- as a hack --but raises some questions: if a |
22 |
package requires a change of permission for security reasons, |
23 |
especially, it can be considered blatantly wrong to _not_ be doing |
24 |
the change of permissions. |
25 |
|
26 |
Also, I'd like prefix-portage to work in the classic way as root, or |
27 |
with sudo, as well as fully working for a normal, non-privileged user. |
28 |
|
29 |
Now, a number of packages simply want to ensure that they have a user |
30 |
to run as, and the directories/homes/whatever are owned by that |
31 |
user. In this case, working with user privileges, it's easy enough |
32 |
to ensure installed files bear the permissions of the user running |
33 |
emerge. |
34 |
|
35 |
For packages that practically *require* permission changes, I suggest |
36 |
something like the following; if we can inject userpriv as the |
37 |
'default' into FEATURES, we can simply RESTRICT these temperamental- |
38 |
security-wise ebuilds with userpriv. |
39 |
|
40 |
If we do something like the above, we can easily move all the chown/ |
41 |
chmod/fperms calls to "echown, echmod, efperms" and have these |
42 |
decisions happen in the background (or tossing an error that sudo is |
43 |
required or something). |
44 |
|
45 |
Specifics aside, I'd like to know if this is generally the idea most |
46 |
of us have in our heads about how prefix-portage should work. And |
47 |
then, specifically, I wonder if we can co-opt 'userpriv' in that way, |
48 |
since it seems pretty apt to be used in this fashion. |
49 |
|
50 |
__armando |
51 |
aka fafhrd |
52 |
|
53 |
-----BEGIN PGP SIGNATURE----- |
54 |
Version: GnuPG v1.4.6 (Darwin) |
55 |
|
56 |
iD8DBQFGHNzg1uuRqaoClwIRAhBUAJoCap/qHrjoWgmqX13hUmNhTFWHEgCeJT3D |
57 |
AlUApd1EWMQ1DhskjYjVvP4= |
58 |
=s+bC |
59 |
-----END PGP SIGNATURE----- |
60 |
-- |
61 |
gentoo-alt@g.o mailing list |