reebsd-pkg@freebsd.org" , "freebsd-current@freebsd.org" , pete@nomadlogic.org, bapt@freebsd.org, bane@pmf.uns.ac.rs, shawn.webb@hardenedbsd.org X-Mailer: interia.pl/pf09 In-Reply-To: References: X-Originating-IP: 45.148.42.6 Message-Id: List-Id: Binary package management and package tools discussion List-Archive: https://lists.freebsd.org/archives/freebsd-pkg List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-pkg@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=interia.pl; s=biztos; t=1753900229; bh=djkOPwrNAVqNGFcCLZkRkLUIzvDo43fITXN3/GIUE8Q=; h=Date:From:Subject:To:Message-Id:MIME-Version:Content-Type; b=rfOJC389yFqT3fqgLJdP3z94yCzwQiPn5zqL1ujyioGDQBjeyq7YbJ8QUqxXxaMOV h9gY9QmHvtIIWXnxkV2iJn91qMxO8lPpGjUAeNmcR7hc3NRW2GKPF9GxECjAObeKPo /8dDbN94gE2c4FMDbqJunoZkcRYC/ZmSqNKdVod0= X-Rspamd-Queue-Id: 4bsgkh3dbXz486W X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:16138, ipnet:217.74.64.0/22, country:PL] Hi. I have only two proposals that seem sensible. (1) Keep pkg(8) for third party packages with /etc/pkg and /usr/local/etc/pkg and /var/db/pkg dirs for configuration. Use separate pkgbase(8) with /etc/pkgbase and /usr/local/etc/pkgbase and /var/db/pkgbase dirs for managing PKGBASE packages. By pkgbase(8) I have the same pkg(8) project in mind - just renamed as pkgbase(8) and with */pkgbase dirs instead of */pkg. (2) My other idea is to 'mark' all FreeBSD Base System packages as 'vital' - so they are never removed automatically - but if someone wants to remove them with additional force option - then I assume he knows what he is doing. I would prefer (1) over (2) if you ask me. As for additional groups like base-minimal or base-standard - I do not have anything against such additional features or layers - its not related to the main topic IMHO - that with 'classic' FreeBSD the *pkg delete -af* removes only third party packages and with PKGBASE FreeBSD it removes almost all system rendering it unbootable/unusable. Hope that helps. Regards, vermaden Temat: Re: PKGBASE Removes FreeBSD Base System Feature Data: 2025-07-30 4:18 Nadawca: "Shawn Webb" <shawn.webb@hardenedbsd.org> Adresat: "vermaden" <vermaden@interia.pl>; DW: freebsd-pkgbase@freebsd.org; freebsd-stable@freebsd.org; freebsd-pkg@freebsd.org; freebsd-current@freebsd.org; > >> On Wed, Jul 30, 2025 at 02:28:35AM +0200, vermaden wrote: >> Hi, >> >> after short discussion here: >> - https://github.com/freebsd/pkg/issues/2485 >> >> I got REALLY concerned. >> >> One of THE features and selling points of a FreeBSD UNIX system is the 'untouchable' Base System. >> >> Without PKGBASE all the features are preserved. >> >> But when You convert to PKGBASE its ... GONE! >> >> Consider this command: >> >> # pkg delete -af >> >> What it does? >> >> It removes all third party packages on 'classic' FreeBSD system without touching the FreeBSD Base System. >> >> What the same "pkg delete -af" command does on a PKGBASE FreeBSD system? >> >> It kills/destroys almost all of the FreeBSD Base System and leaves only two PKGBASE packages called: >> >> - FreeBSD-clibs >> - FreeBSD-runtime >> >> All the rest of Base System is GONE. Destroyed. > > Hey vermaden, > > As mentioned in the GitHub ticket, it appears there might be some room > for discussion on which base packages ought to be marked vital and if > the current list (of two) should be expanded. > > I suspect there could also be room for discussion on technical > measures pkg could adopt to help mitigate issues like this. > > I myself don't have much in the way of suggestions on either topic of > discussion. I'm simply hoping this email moves the needle forward in a > positive direction. > > Thanks, > > -- > Shawn Webb > Cofounder / Security Engineer > HardenedBSD > > Signal Username: shawn_webb.74 > Tor-ified Signal: +1 303-901-1600 / shawn_webb_opsec.50 > https://git.hardenedbsd.org/hardenedbsd/pubkeys/-/raw/master/Shawn_Webb/03A4CBEBB82EA5A67D9F3853FF2E67A277F8E1FA.pub.asc > >