Dnia 2014-05-13, o godz. 09:28:49
Andrew Savchenko napisał(a):
> I tried network-sandbox — this is a disaster. It brokes distcc
> completely since distcc client can't connect to remote servers (and
> even to a local one if any).
Calling something a disaster just because it breaks one thing is
un
On Tue, May 13, 2014 at 1:28 AM, Andrew Savchenko wrote:
>
> Please do not enable them prior rigorous testing.
>
> I tried network-sandbox — this is a disaster. It brokes distcc
> completely since distcc client can't connect to remote servers (and
> even to a local one if any).
Certainly agree on
On Mon, 12 May 2014 19:39:09 +0200
Michał Górny wrote:
> I don't know postgresql well enough but does the test db reside
> in temporary build directory? That is, can you guarantee that:
>
> 1) it will never ever collide with user's database,
>
> 2) it will be properly cleaned up even if the tes
Hello,
On Sun, 11 May 2014 23:42:38 +0200 Michał Górny wrote:
> Hi, everyone.
>
> Almost 9 months ago I've committed three new FEATURES for portage:
> cgroup, ipc-sandbox and network-sandbox. Today I'd like to propose
> enabling at least the latter two by default.
>
>
> Firstly, I'd like to sho
On Mon, May 12, 2014 at 1:22 PM, Rick "Zero_Chaos" Farina
wrote:
> That would be nice, can we do the network namespaces so that I at least
> don't have to bind to a random port? That alone would be a major
> improvement in usability.
>From my very limited understanding of network namespaces, when
Dnia 2014-05-12, o godz. 13:22:20
"Rick \"Zero_Chaos\" Farina" napisał(a):
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 05/12/2014 01:08 PM, Michał Górny wrote:
> > Dnia 2014-05-12, o godz. 12:07:11
> > "Rick \"Zero_Chaos\" Farina" napisał(a):
> >
> >> What about talking to local n
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 05/12/2014 01:08 PM, Michał Górny wrote:
> Dnia 2014-05-12, o godz. 12:07:11
> "Rick \"Zero_Chaos\" Farina" napisał(a):
>
>> What about talking to local network resources? In my metasploit ebuild
>> it has tests available which talk to a local da
Dnia 2014-05-12, o godz. 12:07:11
"Rick \"Zero_Chaos\" Farina" napisał(a):
> What about talking to local network resources? In my metasploit ebuild
> it has tests available which talk to a local database and are perfectly
> safe, however, if postgresql is started on the system the tests don't
>
Dnia 2014-05-12, o godz. 12:40:42
Rich Freeman napisał(a):
> However, I don't know if portage actually makes the network namespace
> that it creates useful - I don't know if it contains any interfaces,
> or if they are initialized/etc.
It sets up a private loopback (alike 'ifconfig lo up') that
Mike Gilbert wrote:
> On Mon, May 12, 2014 at 12:46 PM, Ciaran McCreesh
> wrote:
> > Why, though?
>
> We should probably emit an error message advising the user to enable
> the kernel option or disable the network-sandbox feature. This should
> happen when we call unshare() and that fails with e
On Mon, May 12, 2014 at 12:46 PM, Ciaran McCreesh
wrote:
> On Mon, 12 May 2014 12:44:38 -0400
> Mike Gilbert wrote:
>> On Mon, May 12, 2014 at 11:59 AM, Ciaran McCreesh
>> wrote:
>> > On Mon, 12 May 2014 17:46:57 +0200
>> > Alexander Berntsen wrote:
>> >> On 12/05/14 17:23, Ciaran McCreesh wrot
On Mon, 12 May 2014 12:44:38 -0400
Mike Gilbert wrote:
> On Mon, May 12, 2014 at 11:59 AM, Ciaran McCreesh
> wrote:
> > On Mon, 12 May 2014 17:46:57 +0200
> > Alexander Berntsen wrote:
> >> On 12/05/14 17:23, Ciaran McCreesh wrote:
> >> > A flag being present or not in FEATURES does not mean any
On Mon, May 12, 2014 at 11:59 AM, Ciaran McCreesh
wrote:
> On Mon, 12 May 2014 17:46:57 +0200
> Alexander Berntsen wrote:
>> On 12/05/14 17:23, Ciaran McCreesh wrote:
>> > A flag being present or not in FEATURES does not mean anything, and
>> > if you're assuming that it does then you have a bug.
On Mon, May 12, 2014 at 12:07 PM, Rick "Zero_Chaos" Farina
wrote:
> What about talking to local network resources? In my metasploit ebuild
> it has tests available which talk to a local database and are perfectly
> safe, however, if postgresql is started on the system the tests don't
> work, the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 05/11/2014 05:42 PM, Michał Górny wrote:
> Hi, everyone.
>
> Almost 9 months ago I've committed three new FEATURES for portage:
> cgroup, ipc-sandbox and network-sandbox. Today I'd like to propose
> enabling at least the latter two by default.
>
>
On Mon, 12 May 2014 17:46:57 +0200
Alexander Berntsen wrote:
> On 12/05/14 17:23, Ciaran McCreesh wrote:
> > A flag being present or not in FEATURES does not mean anything, and
> > if you're assuming that it does then you have a bug.
> Please try to stay on topic, and don't obfuscate your posts
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 12/05/14 17:23, Ciaran McCreesh wrote:
> A flag being present or not in FEATURES does not mean anything, and
> if you're assuming that it does then you have a bug.
Please try to stay on topic, and don't obfuscate your posts
needlessly. Note that I
On Mon, 12 May 2014 13:15:35 +0200
Alexander Berntsen wrote:
> - -1 from me until Portage is capable of detecting if the user's
> operating system supports the FEATUREs, and informing them of this.
A flag being present or not in FEATURES does not mean anything, and if
you're assuming that it does
On Mon, May 12, 2014 at 8:59 AM, Andreas K. Huettel
wrote:
> Am Montag, 12. Mai 2014, 13:15:35 schrieb Alexander Berntsen:
>> -1 from me until Portage is capable of detecting if the user's
>> operating system supports the FEATUREs, and informing them of this.
>>
>> I also agree with Ryan that the
Am Montag, 12. Mai 2014, 13:15:35 schrieb Alexander Berntsen:
> -1 from me until Portage is capable of detecting if the user's
> operating system supports the FEATUREs, and informing them of this.
>
> I also agree with Ryan that the relevant Linux options should be added
> to the Gentoo Linux menu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
- -1 from me until Portage is capable of detecting if the user's
operating system supports the FEATUREs, and informing them of this.
I also agree with Ryan that the relevant Linux options should be added
to the Gentoo Linux menu.
- --
Alexander
ber
On 12/05/14 02:18, Davide Pesavento wrote:
> On Sun, May 11, 2014 at 11:42 PM, Michał Górny wrote:
>> Hi, everyone.
>>
>> Almost 9 months ago I've committed three new FEATURES for portage:
>> cgroup, ipc-sandbox and network-sandbox. Today I'd like to propose
>> enabling at least the latter two by
On Sun, May 11, 2014 at 11:42 PM, Michał Górny wrote:
> Hi, everyone.
>
> Almost 9 months ago I've committed three new FEATURES for portage:
> cgroup, ipc-sandbox and network-sandbox. Today I'd like to propose
> enabling at least the latter two by default.
>
+1
I've been using all three of them
Hi, everyone.
Almost 9 months ago I've committed three new FEATURES for portage:
cgroup, ipc-sandbox and network-sandbox. Today I'd like to propose
enabling at least the latter two by default.
Firstly, I'd like to shortly remind you what they do:
1. cgroup -- puts all processes spawned by ebuil
24 matches
Mail list logo
