On Sunday, October 12, 2003, at 8:03 pm, Chris Dolan wrote:
On Sunday, October 12, 2003, at 08:25 PM, Greg Novak wrote:
--- Chris Dolan <[EMAIL PROTECTED]> wrote:I have not yet heard anyone mention the best reason for user-mode fink:
trust problems. Do you really want to be running a ton of shell scripts
and makefiles as root? Not me. I'd rather compile and build .debs as a
regular user and only do the final install step as root.
I don't think this holds water. If you don't trust the people writing the
scripts, what's to stop them from patching the software to do something
malicious while it's building (as a regular user) and then doing nasty
stuff after the software is installed as root?
It's not just maliciousness, it's accidents too -- perhaps even more the latter! Take for example the recent cases found on the list of packages that accidentally did some of their "make install" into /sw instead of the /sw/src/... sandbox because of a %p instead of %i. Building as non-root would block this from wreaking havoc.
Ideally, I want to do the highly unpredictable "build" step as me, and the much more predictable "install" from .deb as root. That's similar to how I install manually: ./configure; make; sudo make install, but even better since even make install is non-root. That's similar to how RPMs are built for RedHat. Even Perl's CPANPLUS is moving in that direction, I think. You just don't need root's power to do the build, so why risk accidents? All it takes is one instance of the following to to ruin your day when you're root.
clean: rm -r *.o build /* *~
Chris
------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php _______________________________________________ Fink-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/fink-devel
--
"NOTICE: This E-mail (including attachments) is covered by the Electronic
Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential and may be legally privileged. If you are not the intended recipient, you are hereby notified that any retention, dissemination, distribution or copying of this communication is strictly prohibited, Please reply to the sender that you have received the message in error, then delete it. Thank you."
------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php _______________________________________________ Fink-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/fink-devel
