Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 27 Aug 2022 15:27:25 +0200
From:      Michael Gmelin <grembo@freebsd.org>
To:        freebsd@oldach.net
Cc:        freebsd-current@freebsd.org, freebsd-ports@freebsd.org, yasu@freebsd.org, freebsd@walstatt-de.de
Subject:   Re: security/clamav: /ar/run on TMPFS renders the port broken by design
Message-ID:  <E3110EFB-EF59-40C3-ACBF-496C7F309B49@freebsd.org>
In-Reply-To: <202208271318.27RDI9Jd044045@nuc.oldach.net>
References:  <202208271318.27RDI9Jd044045@nuc.oldach.net>

next in thread | previous in thread | raw e-mail | index | archive | help


> On 27. Aug 2022, at 15:18, freebsd@oldach.net wrote:
>=20
> =EF=BB=BFMichael Gmelin wrote on Sat, 27 Aug 2022 15:02:04 +0200 (CEST):
>> (you're removing /var/run, which shouldn't be removed
>=20
> Not quite. It's actually not uncommon to boot with an empty /var. Please s=
ee /etc/rc.d/var and related.

That=E2=80=99s a good point.

> The request that ports/packages should consider this case is not exactly u=
nreasonable IMO.
>=20

If I was the maintainer, I would simply add the code to create the directory=
 for robustness sake (I for one deleted subdirs in /var/run more than once a=
nd would expect a port to fix this on restart, also to make sure correct per=
missions are applied). But since it doesn=E2=80=99t seem like this is going t=
o happen, adding a custom rc file would be a viable short term workaround fo=
r the requester.

I like the idea of having something like tmpfiles.d, it would also help port=
 maintainers (could also be done as a port).

Cheers





Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E3110EFB-EF59-40C3-ACBF-496C7F309B49>