There are sometimes cases in which packages install to invalid directories (e. g. /udev) which we currently don't prevent.
Thus, the idea came up to create a whitelist of directories legal to install
to (with exheres-0 providing an option to manually whitelist additional
directories).
Here's my suggestion for the directories we could start with. Each entry
refers to the directory itself and all its sub-dirs unless explicitly stated
differently:
/bin
/${LIBDIR}
/var (except /var/run /var/lock (both are non-persistent))
/etc
/sbin
/usr
Possibly:
/opt - rarely to be used but some of our packages do use it
currently.
What we should *not* add to the whitelist:
/dev - for obvious reasons
/home - user homes should not be installed to
/mnt - for mounting stuff
/media - for mounting stuff
/proc - for obvious reasons
/srv - managed by the administrator
/tmp - non-persistent
/boot - managed by the administrator
/root - root's home must not be touched.
/sys - for obvious reasons
/run - non-persistent
Did I miss something? Remarks?
Best regards, Wulf
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Exherbo-dev mailing list [email protected] http://lists.exherbo.org/mailman/listinfo/exherbo-dev
