From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 15850 invoked by uid 1002); 7 Sep 2003 14:10:10 -0000 Mailing-List: contact gentoo-dev-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Received: (qmail 13718 invoked from network); 7 Sep 2003 14:10:08 -0000 From: Martin Schlemmer Reply-To: azarah@gentoo.org To: Jan Krueger Cc: Chris Gianelloni , Steven Elling , Gentoo-Dev , Nick Jones In-Reply-To: <200309071607.48759.jk@microgalaxy.net> References: <200309071502.27645.jk@microgalaxy.net> <1062940896.8455.113.camel@nosferatu.lan> <200309071607.48759.jk@microgalaxy.net> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-5gs7WLwTLeXFwnLgzOzg" Message-Id: <1062944011.8455.118.camel@nosferatu.lan> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.4 Date: Sun, 07 Sep 2003 16:13:31 +0200 Subject: Re: [gentoo-dev] Some suggestions X-Archives-Salt: ff1e64c7-168d-477e-9377-993f2692b32c X-Archives-Hash: 095bace94b98319b707753a30dfc0d20 --=-5gs7WLwTLeXFwnLgzOzg Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sun, 2003-09-07 at 18:07, Jan Krueger wrote: > On Sunday 07 September 2003 13:21, Martin Schlemmer wrote: > > The other side of the issue that nobody really touched (or wanted to) > > up to now, is that the way of doing things as we do is with a reason. > > What about proposing (with maybe prototype) a new way of doing what > > we do now via CONFIG_PROTECT and etc-update/dispatch-conf that will > > also fit the requirements that you guys want ? >=20 > Ok, as is understand this would be the variable: > CONFIG_EXCLUDE in /etc/make.conf >=20 > This variable would accept a list of directories/files for which the beha= viour=20 > of portage would be like follows: >=20 > whenever portage has the image of the to install software ready it scans = this=20 > image for the values in CONFIG_EXCLUDE. >=20 > whenever it finds such a directory/file in the image it moves the=20 > directory/file to the doc-directory (eg:=20 > /usr/share/doc/${PF}/excluded_config/ ) of the image (and maybe writes a=20 > message to the user/log) >=20 > after that portage continues normally. >=20 Ok, this sounds like an good alternative, and it is flexible. Might add a bug and add us all to it after its been discussed some more. > (btw: i really dont like the possibility an ebuild can change the live=20 > filesystem in pkg_postinst. that somehow makes the sandbox useless. it=20 > shudders me, when i think of an ebuild that has a complicated shell code = in=20 > pkg_postinst with rm/cp/mv/cat/(other potentially dangerous commands) in = it.=20 > I just can hope that this shell code works as expected on the wide variat= ions=20 > of gentoo installations. but thats another story and another reason why i= =20 > dont use gentoo on my servers any longer) >=20 But you trust the daemons/programs running with root privs all the time ? :D Cheers, --=20 Martin Schlemmer Gentoo Linux Developer, Desktop/System Team Developer Cape Town, South Africa --=-5gs7WLwTLeXFwnLgzOzg Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQA/Wz0LqburzKaJYLYRAsTpAJ9QOSOQXA33DC9XGm/pkEvvJxUiVgCgjAWt grUm1uDYTU0/ETOxCz0b8Fc= =Y0p+ -----END PGP SIGNATURE----- --=-5gs7WLwTLeXFwnLgzOzg--