Hi Josh & Marco, Josh Triplett: > apparmor ships /var/cache/apparmor/CACHEDIR.TAG directly in the binary > package. Packages must not ship files or directories in /var/cache; the > system administrator is free to delete such files or directories at any > time.
Just curious (since I agree with your conclusions): where does "Packages must not ship files or directories in /var/cache" come from? > In this case, it's the responsibility of the sysadmin to not back up > /var/cache; it's not apparmor's responsibility to ship a CACHEDIR.TAG > file in its particular subdirectory. (There ought to be one in > /var/cache directly, but that's not apparmor's problem to solve.) This makes sense to me. The initial request by Marco about CACHEDIR.TAG was "please ship a CACHEDIR.TAG file in the apparmor package if the cache directory cannot be moved out of /etc/" (#883584). Now that we've moved the cache to /var/cache, I agree we can stop shipping CACHEDIR.TAG in the apparmor package. Marco, do you have anything to add on this topic before I go ahead? Cheers, -- intrigeri
