-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On 04/01/2014 10:03 AM, Kfir Lavi wrote: > On Mon, Mar 31, 2014 at 11:53 PM, Duncan <1i5t5.dun...@cox.net> wrote: > >> Alexandre Rostovtsev posted on Mon, 31 Mar 2014 14:54:09 -0400 as excerpted: >> >>> The best solution is to figure out why the directory is being created there >>> and whether it >>> is customizable. Maybe the code actually is creating $HOME/InstallShield? >>> Then export >>> HOME=${T} in your ebuild. >> >> Well, "best" would be not to run software where the author doesn't respect >> your rights to >> study, patch and share the software, with or without those modifications, in >> the first >> place. >> >> But understanding not everybody is prepared to go that route and it's their >> machines and >> life, not mine... >> >> On the ebuild execution side, as a last resort you can turn off >> FEATURES=sandbox and perhaps >> FEATURES=userpriv as well, allowing it free access to do whatever it's going >> to do. >> >> Alternatively and for both the ebuild creation and execution sides, take a >> look at >> /etc/sandbox.conf and the files in /etc/sandbox.d/, and grep SANDBOX_ in >> $PORTDIR/*/*/*.ebuild and $PORTDIR/eclass/*.eclass. >> >> (Tho it's not always proprietaryware; take a look at emacs... based on some >> of the other >> packages that disable sandbox, I'd guess it's the lisp.) >> >> Anyway, SANDBOX_PREDICT or SANDBOX_WRITE will probably do it in your case >> (violations not >> flat-out-segfaults as emacs apparently triggers), but SANDBOX_ON=0 is there >> if you REALLY >> need it. >> >> Tho obviously if you were doing that ebuild for the main tree, any messing >> with sandbox isn't >> going to get it there any faster. But if you're doing it for your own >> (including possibly >> company internal) use only... >> >> -- Duncan - List replies preferred. No HTML msgs. "Every nonfree program >> has a lord, a >> master -- and if you use the program, he is your master." Richard Stallman >> >> >> > Thanks Duncan, > > addwrite /root/InstallShield addwrite /etc/mtab > > did the trick. > > Thanks all for replaying. > > Kfir >
IIRC, you really should use `addpredict` instead of `addwrite`, as you don't want the package *really* writing to those locations. - -- Jonathan Callen -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCgAGBQJTO3zXAAoJELHSF2kinlg4emwQAJNwluWdrGXrBMj3f+j4Sx8+ Ch6M5FF5lRqQXnnqZUvXrEd2t6iBMrZ0Xm/AVnAkCNr4vlpRdcS7ahmbCSC4jT2f Plct5CG6+3/W1PbNfmSLoBxIlEU8vMzx4gUJtaGUOuuekjuYK+xKHjlskVJks0Y8 im0k/1VDR13J6NyneBmISH0SglmYmVTAezT9yngqm089cfi4DkZo4MdR/r4TUtRd lu62NlZ517t2pNINJe5anRq9Q0D+obGg8gmZ0+C2jNwj+9thXZWnSLuV03eXpIG3 ntVaVRI2H4p9hPWQJMCfVsyVfudYDiP/05hOkeTOd3NV+8crODoY06CQNhZ7e0hb yB+TE+bqufAuqaEalhEB5oxn61u+ALYHCXSRNjuQItzZrWRSXqV6r7Hd9TKtHEL0 w+ayThJYXqWDSj69yXpyHMldWovydKMVv7Goz9gdzBjPIRVfLZoUmvpl1RGwsOII ahubgQPp2n0cibm0K2Uaqr1xg7MuvUr810hl/LVhK8OlsT3gqDgMXyZrG6S1x/jo DV7qCJCqy5GjDc4KdS/tPTXJt9krAjRNDIxfA/jzvOC8lghZuAFFZpUSHfBR9XL+ VUMUwhwdathtQic20+t4vnXP24AetYvqaO7K1dRFJhopGE8P0gnt7r8xQa5uZSkr QtKhDStXVcLkOnuw3jy+ =3dEf -----END PGP SIGNATURE-----