From owner-freebsd-current@FreeBSD.ORG Fri May 16 15:09:39 2014 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id F1D414CD for ; Fri, 16 May 2014 15:09:39 +0000 (UTC) Received: from mail-la0-x22b.google.com (mail-la0-x22b.google.com [IPv6:2a00:1450:4010:c03::22b]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 7DFF028E4 for ; Fri, 16 May 2014 15:09:39 +0000 (UTC) Received: by mail-la0-f43.google.com with SMTP id mc6so2079553lab.30 for ; Fri, 16 May 2014 08:09:37 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=/oyEriw11rSKP01VvTuh3N14xDZ7qXdteMR2i28js18=; b=RQlkGECEVX91/aAa8lPHwrFVnwNbviggFxud0nER90UfxDTCEYRHjEtFMTlLGWgDeH Q448A8qDnTs+l5rEl8nZTb2428/CfUZ8dhxUzejlkLhTowP+XigXQCaGyoE66TSD5G+W iQL+jpuIGYfvdt/WLdTFqXVx5hxsR6jtONdi64so6Wz1J7sj4e+21BxKQ0S2+GJPkpZE iVryWo0fOtybqmYXkJ3Q6G1ALoKaFuBRtUitXviok793VrAdY7gbo8wiXloD//yx+Kfk 00l6gxbgDoauStMsJr6YdDL+7oLFB3lQL2iv/yEh0IpKqKQ7pZQhGF8hMpc3NtjJoMmv WqBg== MIME-Version: 1.0 X-Received: by 10.112.135.198 with SMTP id pu6mr2105666lbb.58.1400252977438; Fri, 16 May 2014 08:09:37 -0700 (PDT) Received: by 10.112.129.164 with HTTP; Fri, 16 May 2014 08:09:37 -0700 (PDT) In-Reply-To: <20140516155324.498039da@shibato> References: <20140516155324.498039da@shibato> Date: Fri, 16 May 2014 16:09:37 +0100 Message-ID: Subject: Re: timezone for 100.chksetuid From: Tom Evans To: "J.R. Oldroyd" Content-Type: text/plain; charset=UTF-8 Cc: freebsd-current X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 May 2014 15:09:40 -0000 On Fri, May 16, 2014 at 2:53 PM, J.R. Oldroyd wrote: > I would like to propose that a timezone setting be possible for the > > src/etc/periodic/security/100.chksetuid > > script. Either fix it at something like UTC, or add an rc.conf setting > that specifies what timezone to use. Or both, default to UTC but allow > a timezone setting in rc.conf. > > Reason for this is that for folk who travel, the 100.chksetuid script > generates and diffs "find -ls" output and this output changes if you > change timezones and update the system timezone setting while you are > away. It then changes back again when you return. If you travel a lot, > the two timezone changes cause this script to flag every setuid file as > having changed (twice), when all that changed is the time display. This > means that real changes during the same period will likely be overlooked > and the frequent non-real diffs tend to make one likely to ignore this > section. Do you mean you are changing /etc/localtime whenever you move to another timezone? I would suggest stopping doing that! Instead just set TZ in your user environment to whatever TZ you want. That way, your programs will all be localised correctly, and scripts which run as root will remain consistent. Cheers Tom