1 |
On Mon, Mar 31, 2014 at 11:53 PM, Duncan <1i5t5.duncan@×××.net> wrote: |
2 |
|
3 |
> Alexandre Rostovtsev posted on Mon, 31 Mar 2014 14:54:09 -0400 as |
4 |
> excerpted: |
5 |
> |
6 |
> > The best solution is to figure out why the directory is being created |
7 |
> > there and whether it is customizable. Maybe the code actually is |
8 |
> > creating $HOME/InstallShield? Then export HOME=${T} in your ebuild. |
9 |
> |
10 |
> Well, "best" would be not to run software where the author doesn't |
11 |
> respect your rights to study, patch and share the software, with or |
12 |
> without those modifications, in the first place. |
13 |
> |
14 |
> But understanding not everybody is prepared to go that route and it's |
15 |
> their machines and life, not mine... |
16 |
> |
17 |
> On the ebuild execution side, as a last resort you can turn off |
18 |
> FEATURES=sandbox and perhaps FEATURES=userpriv as well, allowing it free |
19 |
> access to do whatever it's going to do. |
20 |
> |
21 |
> Alternatively and for both the ebuild creation and execution sides, take |
22 |
> a look at /etc/sandbox.conf and the files in /etc/sandbox.d/, and grep |
23 |
> SANDBOX_ in $PORTDIR/*/*/*.ebuild and $PORTDIR/eclass/*.eclass. |
24 |
> |
25 |
> (Tho it's not always proprietaryware; take a look at emacs... based on |
26 |
> some of the other packages that disable sandbox, I'd guess it's the lisp.) |
27 |
> |
28 |
> Anyway, SANDBOX_PREDICT or SANDBOX_WRITE will probably do it in your case |
29 |
> (violations not flat-out-segfaults as emacs apparently triggers), but |
30 |
> SANDBOX_ON=0 is there if you REALLY need it. |
31 |
> |
32 |
> Tho obviously if you were doing that ebuild for the main tree, any |
33 |
> messing with sandbox isn't going to get it there any faster. But if |
34 |
> you're doing it for your own (including possibly company internal) use |
35 |
> only... |
36 |
> |
37 |
> -- |
38 |
> Duncan - List replies preferred. No HTML msgs. |
39 |
> "Every nonfree program has a lord, a master -- |
40 |
> and if you use the program, he is your master." Richard Stallman |
41 |
> |
42 |
> |
43 |
> |
44 |
Thanks Duncan, |
45 |
|
46 |
addwrite /root/InstallShield |
47 |
addwrite /etc/mtab |
48 |
|
49 |
did the trick. |
50 |
|
51 |
Thanks all for replaying. |
52 |
|
53 |
Kfir |