Jeremy Huntwork wrote these words on 11/25/05 16:23 CST: > Now, if there is another way of achieving what Matthias has done - one > where we don't have to have a separate user for each package - that > would be great. In short, what I'd like to see is a clearer > understanding of the packages being installed - the ability to audit the > installation of packages and determine a proper course of action for each.
Thanks for the explanation. As Dan mentioned, it appears you're looking for 3 main things. 1) knowledge of suid and sgid programs 2) knowledge of placement of files 3) knowledge of files being overwritten 1 and 2 is easy with just a few lines of bash scripting before and after the installation of a package. In fact, it is what I do now as my package management system. 3 presents a dilemma in that it isn't real easy to accomplish. I do it now (ever since the Heimdal episode on my system) by installing unknown packages into a private dir as an unprivileged user, then comparing the installed files in the private dir to files on the system. It's automated, but it does require installing the package twice. For programs installed in /opt/somedir, it isn't an issue as there is no chance for overwrite, except possibly in /etc. But even in /etc the chance is unlikely. I also agree with Dan that it seems to be hint material because there are so many ways to accomplish it. Package-users (or a derivative based on it) is just one way to get it done. I believe that users need to be able to choose which system works best for them. I do feel that LFS should *expose* readers to the *concept* of package management and suggest implementation of some form or another, after considering what is available and figuring out what would be best for him/her. -- Randy rmlscsi: [GNU ld version 2.15.94.0.2 20041220] [gcc (GCC) 3.4.3] [GNU C Library stable release version 2.3.4] [Linux 2.6.10 i686] 17:22:01 up 62 days, 2:46, 3 users, load average: 0.18, 0.69, 0.63 -- http://linuxfromscratch.org/mailman/listinfo/lfs-dev FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
