Quoting Ciaran McCreesh <[EMAIL PROTECTED]>:
On Thu, 11 Jan 2007 09:07:54 +0900 Georgi Georgiev <[EMAIL PROTECTED]>
wrote:
| Further, by adopting ACCEPT_RESTRICT, it would be possible to be able
| to say: ACCEPT_RESTRICT=-sandbox: Do not let any ebuild touch
| anything outside the sandbox.
| ACCEPT_RESTRICT=-userpriv: Do not let any ebuild run with elevated
| privileges.
Which gains what, exactly? These are not things about which the end
user should be concerned.
A user shouldn't be concerned if an ebuild wants to leave the sandbox
when not supposed to?
Anyway, I'll agree that this RESTRICT should simply be disallowed and
that's about the only thing that bothered me.
----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.
--
[email protected] mailing list
