Yannick Lecaillez wrote:
> Hi,
>
> [snip]
>
> We have to change this behaviour : no more store user settings into
> their respective home directory
This was probably a very good idea. It might need some thoughts in order
to try to keep it. It is IMVHO the best approach
> but into a central place. For berkeleydb
> that could give something like :
>
> /etc/kdb-berkeley/system.db <= system/ namespace
> /etc/kdb-berkeley/user:yl.db <= user:yl/ namespace
> /etc/kdb-berkeley/user:foo.db <= user:foo/ namespace
> ... and so on
>
Good try, wrong location.
It should be stored under /var/lib/elektra:
/var/lib/elektra/system.db <= system/ namespace
/var/lib/elektra/user:yl.db <= user:yl/ namespace
/var/lib/elektra/user:foo.db <= user:foo/ namespace
and docs can still be read from /usr/share/doc/elektra/
> kdbd will then run as elektra.elektra and all these previously cited
> file will be set to 640 and owned by elektra.elektra
>
Sounds better that the SUID daemon run by users, that's true :-)
> Or perhaps simply a /etc/kdb-berkeley/elektra.db which will then store
> everything (in my mind user shouldn't have to copy user:yl.db for backup
> its user settings but rather have to use kdb -export.
Indeed. And to XML if at all possible (libxml2, right?)
> So splitting file is somewhat useless)
>
>
>
>>> I was thinking about the next steps for the daemon:
>>>
>>> - The libelektra-daemon.so should try to connect to a daemon. If it can't
>>> find one, it should be started with exec() or system(). Thats why kdbd is
>>> +s.
>>>
System() is evil.
Coupled with a SUID executable, it can only do harm.
Anyway, even though I prefer an unprivileged daemon too, an "isolated
enough" daemon running as root in order to be able to read user's
preferences from their home directories might be a good idea, too.
(Will have to re-check the API sometime soon -- sorry for the long
absence, guys)
J.L.
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Registry-list mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/registry-list
