From owner-freebsd-ports@FreeBSD.ORG Sun Jul 8 08:10:32 2012 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 6907E106566C for ; Sun, 8 Jul 2012 08:10:31 +0000 (UTC) (envelope-from grarpamp@gmail.com) Received: from mail-ob0-f182.google.com (mail-ob0-f182.google.com [209.85.214.182]) by mx1.freebsd.org (Postfix) with ESMTP id 8EB7B8FC14 for ; Sun, 8 Jul 2012 08:10:30 +0000 (UTC) Received: by obbun3 with SMTP id un3so22319238obb.13 for ; Sun, 08 Jul 2012 01:10:30 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=l3wHPJJh0gY4bWQ5y42fKs5DonbdA364l5ITnON3t+k=; b=Nq827ti5jKwf0iEmiWhcuxUIC7XIM8AdZZABwRSe1T2dKFToBw6CTCGsuly1C1hmHO gh05ZbiQK4at1NVT/sZVzwQcM7Dr9GkxJghAfcxJH2yh22ol/WClZgIXGj0iw7w1gybK oW6wniZgAORevGKbOT3jCxMpcjvci8a31rFOFINv14hoErvDBlglDoyFx7zA+wlppZwS iK/Q3jKChWHmseyMg3defzoAOuLn6FGz93anAIkDDmH3e5KvM0dC9Hkdl7Mxe/E7pl8e xEpK6321yFFEVscOtBX+wQT2Qgb7rqLtElaJNK/MiILGUnVOdqe+UetxLJscViaHbUR7 gQyg== MIME-Version: 1.0 Received: by 10.182.31.102 with SMTP id z6mr18127822obh.66.1341735030223; Sun, 08 Jul 2012 01:10:30 -0700 (PDT) Received: by 10.76.81.10 with HTTP; Sun, 8 Jul 2012 01:10:30 -0700 (PDT) In-Reply-To: <20120707231445.GA16872@DataIX.net> References: <20120707231445.GA16872@DataIX.net> Date: Sun, 8 Jul 2012 04:10:30 -0400 Message-ID: From: grarpamp To: freebsd-ports@freebsd.org Content-Type: text/plain; charset=UTF-8 Subject: Re: Standard file permissions for /usr/local X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Jul 2012 08:10:32 -0000 > Given there is no context as to what these are and belong to the numbers > below with the symbolic meaning are useless besides saying the system is Oops, thought I had that noted. They are sort | uniq -c of the permission column of find -ls. > Blindly going through installed software with a massively large comb > "chmod -R anything=anything" is a bad idea Bad idea? Not really, I amended my tree as shown. As you can see, I have about 80k files, 2k dirs and 2k links. All provided by 'packages'. And out of those, I only need one divergent perm, that being Xorg, not thousands. I've no sensitive files there. I don't need man to go around making catpages. Nor sticky dirs for games. Nor Schily's stuff in the bin group. Or polkit priviledges. Or whatever else. As any admin, I know the environment and files, so I'm good with the comb and pomade. And it makes linting installs, security checks and other things simpler if say you find / -perm +0044 and don't have to wade through say, symlinks set to go+w. Or have some other install fail because files aren't writeable. I amed it to reduce my working sets, and work, with other tools easier. And to making finding what changes out from under you easier, etc. No big deal, and not a debate about anyone's equally valid local usage. Maybe I should rephrase... is there something, or a movement within ports, to push mass gobs of files towards mode 0444 or 0644? A umask being set in the build system? An install flag? Or is this just the raw result of doing everything [1] unmodified umask 0022, tarring up the tbz's, and putting them on FTP? [1] Say, patch, ./configure, make, make install, hash +CONTENTS, tarball My experience with ./configure, make, make install of original upstream software releases, is that I think the majority of things end up as I've amended, without the amending. So I just wondered if there's a push in ports somewhere. > Do you have anything relevant as to a particular port or package ? This was a stats analysis, so particulars do not apply.