From owner-freebsd-ports@FreeBSD.ORG Thu Apr 21 04:24:58 2005 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6F61316A4CE for ; Thu, 21 Apr 2005 04:24:58 +0000 (GMT) Received: from bsd.dino.sk (bsd.dino.sk [213.215.72.60]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1BACC43D55 for ; Thu, 21 Apr 2005 04:24:57 +0000 (GMT) (envelope-from ports@dino.sk) Received: from [213.215.74.194] ([213.215.74.194]) (AUTH: LOGIN milan) by bsd.dino.sk with esmtp; Thu, 21 Apr 2005 06:26:19 +0200 id 000000C9.42672B6B.00007C16 From: Milan Obuch To: freebsd-ports@freebsd.org Date: Thu, 21 Apr 2005 06:24:52 +0200 User-Agent: KMail/1.6.2 References: <20050414111426.775f6afd.lehmann@ans-netz.de> <200504202144.12138.josemi@redesjm.local> In-Reply-To: MIME-Version: 1.0 Content-Disposition: inline Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200504210624.52106.ports@dino.sk> Subject: Re: splitting courier-authlib into master+slave ports X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 21 Apr 2005 04:24:58 -0000 On Thursday 21 April 2005 01:48, Yarema wrote: > --On Wednesday, April 20, 2005 21:44:11 +0200 Jose M Rodriguez ... > >> One difference between the courier-authlib-20050408.00.tgz version > >> and courier-authlib-20050420.00.tgz is that I make --with-authpam > >> part of the base port's CONFIGURE_ARGS. This prevents libauthpwd.so.0 > >> from being built and instead builds > >> lib/courier-authlib/libauthpam.so.0. authpwd is discouraged as per > >> : ... > > We have a FreeBSD supported version without a pam library? I think no. ... > Yes, we do have "a FreeBSD supported version without a pam library" > installed if only the base port is installed. I made this happen to for > the sake of completness and now I'm presenting arguments that it is a bad > idea. Thing is that the courier-authlib port, as it is committed NOW, will > install the no PAM version "libauthpwd.so.0" if NONE of the OPTIONS are > selected. Yet the PLIST in the current version does not include > "libauthpwd.so.0". > > See for yourself. Make sure that you have no WITH_ tunables in > /etc/make.conf and unselect all the options in 'make config' then 'make > install' and look in /usr/local/lib/courier-authlib/ -- you'll see that > there's a "libauthpwd.so.0" in there. Then 'pkg_delete > courier-authlib-0.55_1' and you'll get: > > pkg_delete: unable to completely remove directory > '/usr/local/lib/courier-authlib' > pkg_delete: couldn't entirely delete package (perhaps the packing list is > incorrectly specified?) > > This is how things are NOW. I noticed this when I did my initial rewrite > and modified the base port PLIST to account for "libauthpwd.so.0". Now I'm > making a case to do away with it all together by making --with-authpam > nonoptional. I'm simply arguing to have something removed that noone > except me noticed existed. > > It's either we have "libauthpwd.so.0" or the more modern "libauthpam.so.0" > installed in the base port. Both essentially do the same thing by default. > All the documentation I cited points to PAM being the better choice. Actually I filled PR ports/79846 for this issue. In light shed by this discussion simple solution offered there is not the best. It was my first attempt to solve exactly the issue mentioned above. Anyway, if possible, I would like the opportunity to get 'clean' base port, with no auth method included if we are to go with slave ports carrying 'real' auth methods. It is up to the installer/administrator to select authentication method best suiting his/her needs in particular installation. This way we can prevent some unexpected lateral effects, maybe. Regards, Milan