Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 3 Jun 2006 15:49:42 -0500 (CDT)
From:      PauAmma <pauamma@gundo.com>
To:        Kris Kennaway <kris@obsecurity.org>
Cc:        freebsd-ports@freebsd.org
Subject:   Re: PR ports/76915 fell through the cracks?
Message-ID:  <Pine.LNX.4.64.0606031520070.16169@javelin.gundo.com>
In-Reply-To: <20060603193141.GA3544@xor.obsecurity.org>
References:  <Pine.LNX.4.64.0605310018540.23594@javelin.gundo.com> <20060602204523.GA6184@roadrunner.buck.local> <20060603193141.GA3544@xor.obsecurity.org>

next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 3 Jun 2006, Kris Kennaway wrote:

> On Fri, Jun 02, 2006 at 10:45:23PM +0200, Ulrich Spoerlein wrote:
>> PauAmma wrote:
>>>
>>> (http://www.freebsd.org/cgi/query-pr.cgi?pr=76915 for details)
>>
>> I didn't read the patch (yet) and I'm not familiar with the code, but if
>> we would enforce all pkg-install/deinstall scripts to be sh(1) scripts,
>> then it's simply a matter of replacing ./foo with 'sh foo', right?

That would require changes to pkg_delete and related utilities, which 
may actually be a good idea (see below).

> And potentially many other similar changes.  The full scope of the
> changes required to fully support a noexec /var is clearly enormous,
> which is one reason why I don't want to add partial support for this
> nonstandard and rarely-used configuration.

IMO this wouldn't be supporting it strictly speaking, more along the lines 
of not trying to and failing messily. That said, I'm beginning to think 
that if this specific problem should be fixed at all, the fix needs to go 
in pkg_delete and friends, not the ports system itself:

1- This would address the performance concerns Sergey Matveychuk raised.

2- The same problem happens when using pkg_delete -f directly.

Considering the above, and so I don't embark onto something else that only 
I care about, where would you suggest I ask before I start?

(Oh, and since this is no longer ports-related, you can probably close the 
PR unless you think someone may want to revisit it later.)



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.64.0606031520070.16169>