From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1NJFb6-0001tG-84 for garchives@archives.gentoo.org; Sat, 12 Dec 2009 00:12:32 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 5F0B3E09AB for ; Sat, 12 Dec 2009 00:12:31 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 25A8AE073C for ; Fri, 11 Dec 2009 22:46:47 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by smtp.gentoo.org (Postfix) with ESMTP id C695C67E94 for ; Fri, 11 Dec 2009 22:46:46 +0000 (UTC) X-Virus-Scanned: amavisd-new at gentoo.org X-Spam-Score: -2.993 X-Spam-Level: X-Spam-Status: No, score=-2.993 required=5.5 tests=[AWL=-0.394, BAYES_00=-2.599] Received: from smtp.gentoo.org ([127.0.0.1]) by localhost (smtp.gentoo.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RUj6zdN59kDK for ; Fri, 11 Dec 2009 22:46:40 +0000 (UTC) Received: from lo.gmane.org (lo.gmane.org [80.91.229.12]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTP id 5392467E58 for ; Fri, 11 Dec 2009 22:46:36 +0000 (UTC) Received: from list by lo.gmane.org with local (Exim 4.50) id 1NJEFq-0006gr-JN for gentoo-dev@gentoo.org; Fri, 11 Dec 2009 23:46:30 +0100 Received: from liten.csbnet.se ([95.80.45.98]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 11 Dec 2009 23:46:30 +0100 Received: from xake by liten.csbnet.se with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 11 Dec 2009 23:46:30 +0100 X-Injected-Via-Gmane: http://gmane.org/ To: gentoo-dev@lists.gentoo.org From: Peter Hjalmarsson Subject: [gentoo-dev] Re: [RFC] Enable userpriv by default? Support RESTRICT=userpriv? Interaction with prefix in EAPI 3? Date: Fri, 11 Dec 2009 23:46:07 +0100 Message-ID: <1260571567.12483.0.camel@lillen.dodi> References: <4B22A759.1090509@gentoo.org> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: liten.csbnet.se In-Reply-To: <4B22A759.1090509@gentoo.org> X-Mailer: Evolution 2.28.1 Sender: news X-Archives-Salt: da964331-a5b4-4b1d-9ede-ba4eb2534655 X-Archives-Hash: 1d0305addf3b4efdb980706c7e09f6da fre 2009-12-11 klockan 12:11 -0800 skrev Zac Medico: > Should we enable FEATURES=3Duserpriv by default? If we do that then do > we also need to support RESTRICT=3Duserpriv? Maybe RESTRICT=3Duserpriv > should not be supported on the grounds that it is never justified? > What about prefix support (in EAPI 3), which often doesn't have root > privileges? That would be problematic for hardened, as they set the permission for /usr/src/* to root only.