-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Marijn Schouten wrote: > 3) security. When installing a package, it only has write access to its > own directory. I'm guessing they do this with ACLs. > > So we have this cool package manager which supports 1) and 2), but not > 3) I think, and they have almost no package manager, but it supports 1), > 2) and 3).
Gentoo has this feature, too. It's provided by a package called sys-apps/sandbox. It's a dependency of portage on all glibc and uclibc systems (so, it's part of any standard Gentoo/Linux install). It prevents packages from touching anything outside of their build directory, or an image directory where it is installed before portage merges the files into the live filesystem. - -- Mike Kelly -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (MingW32) iD8DBQFFgzZKokMzJ47YCzoRAh/RAJsHLn4hd0EyoirGWtrzpWJi2EpprwCgpkBU 8zgguiyibYouS6F2X96Ser8= =IhAp -----END PGP SIGNATURE----- -- gentoo-dev@gentoo.org mailing list
