From owner-freebsd-ports@FreeBSD.ORG Mon Dec 8 20:32:59 2014 Return-Path: Delivered-To: ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id D0A41C45 for ; Mon, 8 Dec 2014 20:32:59 +0000 (UTC) Received: from mout.gmx.net (mout.gmx.net [212.227.17.21]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mout.gmx.net", Issuer "TeleSec ServerPass DE-1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 66FEEC6A for ; Mon, 8 Dec 2014 20:32:59 +0000 (UTC) Received: from [192.168.0.100] ([87.139.233.65]) by mail.gmx.com (mrgmx101) with ESMTPSA (Nemesis) id 0M3NEK-1Xggam46aG-00qy3t; Mon, 08 Dec 2014 21:32:49 +0100 Message-ID: <54860AEF.6020808@gmx.de> Date: Mon, 08 Dec 2014 21:32:47 +0100 From: olli hauer Reply-To: freebsd-ports@FreeBSD.org User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:31.0) Gecko/20100101 Thunderbird/31.3.0 MIME-Version: 1.0 To: ports@freebsd.org Subject: Re: Ports changing permissions on directories References: <5485FE17.9050909@netfence.it> In-Reply-To: <5485FE17.9050909@netfence.it> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K0:UuqmQY2xwqujPJhb1GEYguORcsmElwPYMW50yIO3Pph0xcJW5f4 MjXVKoFanBi0pb+Q4cdsLCF/HNkqOmAojCkTebUMpX6GqKrYVklaAjNhsvq71gHkuiXgtLK Eyh9kvDB0lrShL2UHpizWxfUiw7+EwvlpkAlTsB9LvaGhYZp5OyFpfGHKuTYRg+J/vJrZJW pD68XNaUiLPFVaTseF3uQ== X-UI-Out-Filterresults: notjunk:1; Cc: Andrea Venturoli , garga@FreeBSD.org X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Dec 2014 20:32:59 -0000 On 2014-12-08 20:37, Andrea Venturoli wrote: > Hello. > > There are some ports that insist on changing permissions on some directories. > An example is clamav, which will always change /var/db/clamav mask to 755. > > Since I always need to "chmod 775 /var/db/clamav" after an upgrade, I'm asking: > _ where does this come from? I tried to look into Makefile, but didn't get to it; > _ is this something FreeBSD specific or coming from upstream? > _ what's the rationale behind this? > _ can this be avoided or tweaked? > > > bye & Thanks > av. > > P.S. Another example would be squid. Hi Andrea, the mode is defined in pk-plist. $ grep @dir /usr/ports/security/clamav/pkg-plist @dir(%%CLAMAVUSER%%,%%CLAMAVGROUP%%,0755) %%DBDIR%% @dir(%%CLAMAVUSER%%,%%CLAMAVGROUP%%,0755) %%LOGDIR%% @dir(%%CLAMAVUSER%%,%%CLAMAVGROUP%%,0755) %%RUNDIR%% In squid there is no hint for pkg about owner, group and mode therefor the directories are always set to root:wheel 0755 $ grep @dir /usr/ports/www/squid/pkg-plist @dir /var/log/squid @dir /var/run/squid @dir /var/squid/cache @dir /var/squid/logs @dir /var/squid I think this should be changed to something like this @dir(squid,wheel,0750) /var/log/squid @dir(squid,wheel,0755) /var/run/squid @dir(squid,squid,0750) /var/squid/cache @dir(squid,wheel,0750) /var/squid/logs @dir(squid,wheel,0750) /var/squid <== not sure, no squid system to compare at the moment -- olli