Date: Sat, 3 Jun 2006 15:31:41 -0400 From: Kris Kennaway <kris@obsecurity.org> To: PauAmma <pauamma@gundo.com>, freebsd-ports@freebsd.org Subject: Re: PR ports/76915 fell through the cracks? Message-ID: <20060603193141.GA3544@xor.obsecurity.org> In-Reply-To: <20060602204523.GA6184@roadrunner.buck.local> References: <Pine.LNX.4.64.0605310018540.23594@javelin.gundo.com> <20060602204523.GA6184@roadrunner.buck.local>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] On Fri, Jun 02, 2006 at 10:45:23PM +0200, Ulrich Spoerlein wrote: > PauAmma wrote: > > >From the initial PR: > > > > When /var (or whichever filesystem holds PKG_DBDIR) is mounted noexec, > > attempts to deinstall ports will fail and leave a mess behind if the > > port has a require or deinstall script. This patch checks for that and > > skips deinstalling if that is the case. > > > > (http://www.freebsd.org/cgi/query-pr.cgi?pr=76915 for details) > > I didn't read the patch (yet) and I'm not familiar with the code, but if > we would enforce all pkg-install/deinstall scripts to be sh(1) scripts, > then it's simply a matter of replacing ./foo with 'sh foo', right? And potentially many other similar changes. The full scope of the changes required to fully support a noexec /var is clearly enormous, which is one reason why I don't want to add partial support for this nonstandard and rarely-used configuration. Kris [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (FreeBSD) iD8DBQFEgeOdWry0BWjoQKURAoimAKCyg15aBUiAKZk+BPcwsIr77Ma6OgCfVIlA f7oJCppKCRD0wtPPgl045/0= =Y3HR -----END PGP SIGNATURE-----help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060603193141.GA3544>