Re: rawhide: kudzu-0.68-1 fails to compile

Tue, 29 Aug 2000 23:06:32 -0700 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 29 Aug 2000, at 0:39, Mike A. Harris wrote:

> On Mon, 28 Aug 2000, Nitebirdz wrote:
> 
> >Date: Mon, 28 Aug 2000 13:51:17 -0500 (CDT)
> >From: Nitebirdz <[EMAIL PROTECTED]>
> >To: [EMAIL PROTECTED]
> >Content-Type: TEXT/PLAIN; charset=US-ASCII
> >Subject: Re: rawhide: kudzu-0.68-1 fails to compile 
> >
> >On Sun, 27 Aug 2000, John Summerfield wrote:
> >
> >> 
> >> I've chowned it to me and do not build as root (regulars will have noticed I'm 
> >> reluctant to build anything as root; recent news wrt pinstrip is Good).
> >> 
> >
> >Excuse me for the stupid question, but why wouldn't you build a package as
> >root?  Security reasons?  Even if you trust the sources?  Just trying to
> >learn something from you, guys.   :-)
> 
> Because I have done so for several years with no problems until
> last week when I had a "rpm --rebuild" delete several
> subdirectories on my filesystem during "%clean" stage.  RPM
> should IMHO do anything it does in a chroot()'d jail.  Making a
> user called "rpm" and setting up rpm to build packages as that
> user, is much safer, ESPECIALLY when constructing and debugging
> your own packages.

If this is a repeat question, I apologize...I just joined the list.

How do you setup rpm to do this (build packages as a non-root 
user)?  Is this documented anywhere?  What directory structure do 
you use?  What permissions and groups should user "rpm" have 
and belong to?

Assuming that I log in as "rpm" (can I do this in an X terminal 
window?  how?  login rpm?), then I just cd to the build directory 
structure and run rpm on the rpm file wherever it is?

Would this also allow me to build a kernel or other system 
executables?

> 
> So, yes.  Security, and safety.  _Even_ if you trust the
> sources.  It is easy to make a mistake in a spec file and kiss
> everything goodbye.
> 
> TTYL
> 
> --
> Mike A. Harris                                     Linux advocate     
> Computer Consultant                                  GNU advocate  
> Capslock Consulting                          Open Source advocate
> 
> If you're looking for Linux books, guides, and other documentation, visit 
> the Linux Documentation Project homepage:  http://linuxdoc.org
> 
> 
> 
> _______________________________________________
> Redhat-devel-list mailing list
> [EMAIL PROTECTED]
> https://listman.redhat.com/mailman/listinfo/redhat-devel-list



-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.2 -- QDPGP 2.61a

iQA/AwUBOaygEVTNST+3CUysEQKADwCdHcNUVdnXBoshYF9ydAs6Ps/KqGwAoK2g
NHTbo4Xrqi2UkakUH2eFwKwl
=MFfe
-----END PGP SIGNATURE-----



_______________________________________________
Redhat-devel-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-devel-list

Reply via email to