Hi Dominic, Am 11.12.2016 um 13:10 schrieb Dominic Hargreaves: > Package: lurker > Version: 2.3-5+b1 > Severity: serious > Justification: Policy 9.1.1 > > As of 2.3-1 the Debian package of lurker unfortunately started > violating the FHS, because it moved its HTML generation output to > /usr/share/lurker/www. According to the FHS[1] /usr must not be > written to in normal operations.
Thanks a lot for the bugreport. You're indeed right, that current lurker package violated the FHS. > I discovered this whilst migrating a lurker installation to a new host. > As far as I can tell, this is a genuine cache, and so I rsynced > /usr/share/lurker/www/ to /var/cache/lurker/www/ and updated the > config file reference, and everything still worked. > > Fixing this in the package would also involve cleaning up any > left-over cache in /usr/share/lurker/www. It's probably not safe > to do this in an automated way, so a similar news item as the one > used in 2.3-1 would be needed. In your patch you suggest to move the htdocs dir to /var/cache/lurker/www. The Problem with this directory is that it's not guaranteed to be kept. /var/cache is allowed to be a volatile filesystem. See Section 5.5.1 of the FHS: "The application must be able to regenerate or restore the data. Unlike /var/spool, the cached files can be deleted without data loss. The data must remain valid between invocations of the application and rebooting the system." (http://refspecs.linuxfoundation.org/FHS_3.0/fhs-3.0.html#varcacheApplicationCacheData) Thus I suggest to move the htdocs to /var/lib/lurker/www instead. I'll modify your patch accordingly. Cheers, jonas > > [1] > <https://www.debian.org/doc/packaging-manuals/fhs/fhs-2.3.html#THEUSRHIERARCHY> > > -- System Information: > Debian Release: 8.6 > APT prefers stable-updates > APT policy: (500, 'stable-updates'), (500, 'stable') > Architecture: i386 (i686) > > Kernel: Linux 3.16.0-4-686-pae (SMP w/2 CPU cores) > Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) > Shell: /bin/sh linked to /bin/bash > Init: sysvinit (via /sbin/init) > > Versions of packages lurker depends on: > ii adduser 3.113+nmu3 > ii apache2 [httpd-cgi] 2.4.10-10+deb8u7 > ii apache2-mpm-prefork [httpd-cgi] 2.4.10-10+deb8u7 > ii debconf [debconf-2.0] 1.5.56 > ii libc6 2.19-18+deb8u6 > ii libgcc1 1:4.9.2-10 > ii libmimelib1c2a 5:1.1.4-2 > ii libstdc++6 4.9.2-10 > ii lighttpd [httpd-cgi] 1.4.35-4+deb8u1 > ii passwd 1:4.2-3+deb8u1 > ii ucf 3.0030 > ii xsltproc 1.1.28-2+deb8u2 > ii zlib1g 1:1.2.8.dfsg-2+b1 > > lurker recommends no packages. > > Versions of packages lurker suggests: > ii gnupg 1.4.18-7+deb8u3 > ii mailman 1:2.1.18-2+deb8u1 > > -- Configuration Files: > /etc/lurker/apache.conf 4c1675809ae49b7e0fe08dcca45f00f0 [Errno 2] No such > file or directory: u'/etc/lurker/apache.conf 4c1675809ae49b7e0fe08dcca45f00f0' > /etc/lurker/lurker.conf.local changed [not included] > > -- debconf information excluded >
signature.asc
Description: OpenPGP digital signature
