From owner-svn-ports-all@FreeBSD.ORG Fri Sep 5 13:24:37 2014 Return-Path: Delivered-To: svn-ports-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id D21B61F9; Fri, 5 Sep 2014 13:24:37 +0000 (UTC) Received: from prod2.absolight.net (mx3.absolight.net [IPv6:2a01:678:2:100::25]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "plouf.absolight.net", Issuer "CAcert Class 3 Root" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 8F48A13C8; Fri, 5 Sep 2014 13:24:37 +0000 (UTC) Received: from prod2.absolight.net (localhost [127.0.0.1]) by prod2.absolight.net (Postfix) with ESMTP id D8F8FBDC7C; Fri, 5 Sep 2014 15:24:34 +0200 (CEST) Received: from gw.in.absolight.net (gw-ecl.in.absolight.net [79.143.241.69]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "gw.in.absolight.net", Issuer "CA Cert Signing Authority" (not verified)) by prod2.absolight.net (Postfix) with ESMTPSA id 8E174BDC68; Fri, 5 Sep 2014 15:24:34 +0200 (CEST) Received: from ogg.in.absolight.net (ogg.in.absolight.net [79.143.241.239]) by gw.in.absolight.net (Postfix) with ESMTP id EC3E0614F; Fri, 5 Sep 2014 15:24:33 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by ogg.in.absolight.net (Postfix) with ESMTP id 7546E7316A28; Fri, 5 Sep 2014 15:24:33 +0200 (CEST) Date: Fri, 05 Sep 2014 15:24:33 +0200 From: Mathieu Arnold To: Dmitry Marakasov , Baptiste Daroussin Subject: Re: svn commit: r367242 - head/security/vlock Message-ID: <58E01AE2C500003853C3AD07@ogg.in.absolight.net> In-Reply-To: <20140905123520.GI43982@hades.panopticon> References: <201409040749.s847n1md063246@svn.freebsd.org> <20140904221624.GF43982@hades.panopticon> <20140905060421.GA25840@ivaldir.etoilebsd.net> <20140905123520.GI43982@hades.panopticon> X-Mailer: Mulberry/4.0.8 (Mac OS X) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Content-Disposition: inline Cc: svn-ports-head@freebsd.org, svn-ports-all@freebsd.org, Ganael LAPLANCHE , ports-committers@freebsd.org X-BeenThere: svn-ports-all@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: SVN commit messages for the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Sep 2014 13:24:37 -0000 +--On 5 septembre 2014 16:35:20 +0400 Dmitry Marakasov wrote: | * Baptiste Daroussin (bapt@FreeBSD.org) wrote: | |> > * Ganael LAPLANCHE (martymac@FreeBSD.org) wrote: |> > |> > Nice, I was just about to submit this. You likely need |> > |> > -@group wheel |> > +@group |> > |> > to reset the group to default, not specifically wheel. |> |> Except that this would make bad packaging when packaging as the user. | | Could you elaborate? The only part in installing a port that needs to be done as root is the actual installation of the package. All the previous stages can be done as a user, nobody, for instance. When you use only @owner or @group, it reverts to the current user, which is root/wheel if you're doing all that as root, or to the current user if not. -- Mathieu Arnold