From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 4.0.0 (2022-12-14) on finch.gentoo.org X-Spam-Level: X-Spam-Status: No, score=-1.0 required=5.0 tests=DMARC_MISSING, MAILING_LIST_MULTI autolearn=unavailable autolearn_force=no version=4.0.0 Received: from sm13.texas.rr.com (sm13.texas.rr.com [24.93.35.40]) by chiba.3jane.net (Postfix) with ESMTP id E18B820ED9E2 for ; Sun, 10 Mar 2002 07:46:45 -0600 (CST) Received: from arn.net (cs666896-76.austin.rr.com [66.68.96.76]) by sm13.texas.rr.com (8.12.0.Beta16/8.12.0.Beta16) with SMTP id g2ADlN6D028396 for ; Sun, 10 Mar 2002 07:47:23 -0600 Received: by arn.net (sSMTP sendmail emulation); Sun, 10 Mar 2002 07:43:29 -0600 Date: Sun, 10 Mar 2002 07:43:29 -0600 From: mrfab@arn.net To: gentoo-dev@gentoo.org Subject: Re: [gentoo-dev] Gentoo observations Message-ID: <20020310134329.GA862@powerhouse> Mail-Followup-To: gentoo-dev@gentoo.org References: <20020310031135.GA29666@powerhouse> <20020310093910.GA969@mouse.mydomain> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020310093910.GA969@mouse.mydomain> Organization: Project J38 X-URL: http://j38.net/ X-Mailer: Karate Mail 6.34 X-Memo: Gone is the mastadon, vanished complete X-Warning: This accuracy of this message has not been verified X-Originating-IP: [127.0.0.1] X-WebsiteUser-IP: [127.0.0.1] Sender: gentoo-dev-admin@gentoo.org Errors-To: gentoo-dev-admin@gentoo.org X-BeenThere: gentoo-dev@gentoo.org X-Mailman-Version: 2.0.6 Precedence: bulk Reply-To: gentoo-dev@gentoo.org X-Reply-To: mrfab@arn.net List-Help: List-Post: List-Subscribe: , List-Id: Gentoo Linux developer list List-Unsubscribe: , List-Archive: X-Archives-Salt: b8793f08-7d7e-4a4e-b548-e79c63e3912e X-Archives-Hash: 3875ee5ee179223177f46d092bd911fd I'd hesitate to go for root:www because there is always that possibility that php or mod_perl or just developer error in a script could allow a web user to overwrite a file--and with root permissions that could be a disaster. That user script sounds like a good idea. Any takers? :-) On Sun 10 Mar 2002 at 03:39 -0600, Gert Menke wrote: > Hi, > > On Sat, Mar 09, 2002 at 09:11:35PM -0600, mrfab@arn.net wrote: > > First, where the hell is vi? It is missing from > > both the boot image and the base install. I > > realize that I can emerge it, but having to use > > an editor as horrible as nano, even just for the > > initial config, was a bit obnoxious. > I could not agree more. > > > Another file system decision that seems > > off to me is the choice of /uar/local/httpd for the > > default documentroot instead of /var/www or > > something like /home/http. > I'd prefer /var/www or /var/apache. > /usr and /usr/local should at least be possible to mount read-only. > Usually you don't want your apache stuff on a ro partition. > /home/httpd just seems wrong to me, but I cannot excactly say why. Somehow > I feel that everyone that owns files on my /home partition should be a > "real" user (i.e. Humanoid)... ;-) > > > Speaking of apache, it would be better to use > > something other than nobody:nobody by default. > Yes; I got used to root:www. > > > I've noticed that a few distros (Redhat in > > particlular comes to mind) have modified useradd > > to create a personal group for a given user. > I don't like modified versions of standard tools. I'd rather have a script > that does the job for me, and has a different name (i.e. addusrgrp). > > Just my 0.02???. > > Greetings > Gert > _______________________________________________ > gentoo-dev mailing list > gentoo-dev@gentoo.org > http://lists.gentoo.org/mailman/listinfo/gentoo-dev > > > > -- - Scott J Garner - - Austin, TX - USA - - ICQ: 17348307 AIM: Jungalero - - OPN: MrFab -