Mail archive
alpine-aports

Re: [alpine-aports] [PATCH] main/openntpd: fixes privelege seperation defaults

From: Natanael Copa <ncopa_at_alpinelinux.org>
Date: Sat, 5 Sep 2015 13:15:51 +0200

On Thu, 3 Sep 2015 11:17:52 +0200
Sören Tempel <soeren_at_soeren-tempel.net> wrote:

> On 29.08.15, Orion Miller wrote:
> > Okay, so what are you saying? Because I thought I wrote what you
> > suggested in the last patch. And now you are suggesting to do what you
> > said I should do last time. [1]
>
> No, I suggested to create that directory in the OpenRC service not in
> the package function. Did you even read your own reference?
>
> On 29.08.15, Orion Miller wrote:
> > If you look at the OpenSSH APKBUILD file it creates /var/empty in it's
> > package function. So I'm not sure what you are actually suggesting.
>
> Turns out: OpenSSH creates /var/empty in the package function and it
> creates it again in the OpenRC service:
>
> See:
> - http://git.alpinelinux.org/cgit/aports/tree/main/openssh/sshd.initd#n39
> - http://git.alpinelinux.org/cgit/aports/tree/main/openssh/APKBUILD#n75
>
> I personally believe that this is a fault in the OpenSSH aport. Still
> the question remains what the best way to create that directory is…I
> personally dislike the creation of /var/empty in the package() function.

I think it is perfectly fine that packages that uses a directory
creates it.

> Maybe we should simply create that in alpine-baselayout?

I think we should and I just did.

Thanks!

-nc


---
Unsubscribe:  alpine-aports+unsubscribe_at_lists.alpinelinux.org
Help:         alpine-aports+help_at_lists.alpinelinux.org
---
Received on Sat Sep 05 2015 - 13:15:51 GMT