Date: Sat, 3 Jun 2006 16:59:28 -0400 From: Kris Kennaway <kris@obsecurity.org> To: PauAmma <pauamma@gundo.com> Cc: freebsd-ports@freebsd.org, Kris Kennaway <kris@obsecurity.org> Subject: Re: PR ports/76915 fell through the cracks? Message-ID: <20060603205927.GA4758@xor.obsecurity.org> In-Reply-To: <Pine.LNX.4.64.0606031520070.16169@javelin.gundo.com> References: <Pine.LNX.4.64.0605310018540.23594@javelin.gundo.com> <20060602204523.GA6184@roadrunner.buck.local> <20060603193141.GA3544@xor.obsecurity.org> <Pine.LNX.4.64.0606031520070.16169@javelin.gundo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--wRRV7LY7NUeQGEoC Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Jun 03, 2006 at 03:49:42PM -0500, PauAmma wrote: > On Sat, 3 Jun 2006, Kris Kennaway wrote: >=20 > >On Fri, Jun 02, 2006 at 10:45:23PM +0200, Ulrich Spoerlein wrote: > >>PauAmma wrote: > >>> > >>>(http://www.freebsd.org/cgi/query-pr.cgi?pr=3D76915 for details) > >> > >>I didn't read the patch (yet) and I'm not familiar with the code, but if > >>we would enforce all pkg-install/deinstall scripts to be sh(1) scripts, > >>then it's simply a matter of replacing ./foo with 'sh foo', right? >=20 > That would require changes to pkg_delete and related utilities, which=20 > may actually be a good idea (see below). >=20 > >And potentially many other similar changes. The full scope of the > >changes required to fully support a noexec /var is clearly enormous, > >which is one reason why I don't want to add partial support for this > >nonstandard and rarely-used configuration. >=20 > IMO this wouldn't be supporting it strictly speaking, more along the line= s=20 > of not trying to and failing messily. That said, I'm beginning to think= =20 > that if this specific problem should be fixed at all, the fix needs to go= =20 > in pkg_delete and friends, not the ports system itself: >=20 > 1- This would address the performance concerns Sergey Matveychuk raised. >=20 > 2- The same problem happens when using pkg_delete -f directly. >=20 > Considering the above, and so I don't embark onto something else that onl= y=20 > I care about, where would you suggest I ask before I start? >=20 > (Oh, and since this is no longer ports-related, you can probably close th= e=20 > PR unless you think someone may want to revisit it later.) Personally I don't think it is worth attempting to handle, as I mentioned previously. Kris --wRRV7LY7NUeQGEoC Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (FreeBSD) iD8DBQFEgfgvWry0BWjoQKURAsT3AJ45dBssmDebyNYscgZ7/fhPj5pc6gCgtf72 LqC1BhTfHCGoRXfFjeG9Nh8= =l4A1 -----END PGP SIGNATURE----- --wRRV7LY7NUeQGEoC--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060603205927.GA4758>