From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1I1BmS-0000vh-Ej for garchives@archives.gentoo.org; Thu, 21 Jun 2007 01:48:16 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.14.0/8.14.0) with SMTP id l5L1lE5M003546; Thu, 21 Jun 2007 01:47:14 GMT Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by robin.gentoo.org (8.14.0/8.14.0) with ESMTP id l5L1jHHi001206 for ; Thu, 21 Jun 2007 01:45:18 GMT Received: from localhost (localhost [127.0.0.1]) by smtp.gentoo.org (Postfix) with ESMTP id 6FEAE64B5C for ; Thu, 21 Jun 2007 01:45:17 +0000 (UTC) X-Virus-Scanned: amavisd-new at gentoo.org X-Spam-Score: 0.644 X-Spam-Level: X-Spam-Status: No, score=0.644 required=5.5 tests=[AWL=-0.609, RCVD_NUMERIC_HELO=1.253] Received: from smtp.gentoo.org ([127.0.0.1]) by localhost (smtp.gentoo.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HuGIaJc6Sc8X for ; Thu, 21 Jun 2007 01:45:15 +0000 (UTC) Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTP id 626FA64B5A for ; Thu, 21 Jun 2007 01:45:14 +0000 (UTC) Received: from root by ciao.gmane.org with local (Exim 4.43) id 1I1BjK-0003cg-8x for gentoo-dev@gentoo.org; Thu, 21 Jun 2007 03:45:02 +0200 Received: from 81.5.170.119 ([81.5.170.119]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Thu, 21 Jun 2007 03:45:02 +0200 Received: from slong by 81.5.170.119 with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Thu, 21 Jun 2007 03:45:02 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: gentoo-dev@lists.gentoo.org From: Steve Long Subject: [gentoo-dev] Re: how to handle sensitive files when generating binary packages Date: Thu, 21 Jun 2007 02:42:11 +0100 Message-ID: References: <200706200047.04951.vapier@gentoo.org> <1182344680.7336.18.camel@TesterBox.tester.ca> <200706201607.07713.vapier@gentoo.org> <20070620211214.0cca11b9@snowflake> <46798BE2.7040300@gentoo.org> <20070620212555.21b99076@snowflake> <467993B9.90707@gentoo.org> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Reply-to: gentoo-dev@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7Bit X-Complaints-To: usenet@sea.gmane.org X-Gmane-NNTP-Posting-Host: 81.5.170.119 User-Agent: KNode/0.10.4 Sender: news X-Archives-Salt: 157ce0d3-a1b1-4b20-9166-24bb03b9094d X-Archives-Hash: 2a651eec8e2ac10e1ea7fe62e8c63ba2 Andrew Gaffney wrote: > Ciaran McCreesh wrote: >> Andrew Gaffney wrote: >>> I'm not sure that's really a feasible solution (but then you probably >>> weren't suggesting it with that intention). Being able to create a >>> "backup" of any installed package without re-emerging is pretty >>> handy. Many people use it and there would be a revolt if quickpkg >>> were removed. >> >> Then live-filesystem-generated packages could be marked as 'not for >> redistribution'. > > That's certainly a lot more feasible. However, it would have to be marked > in some way that portage would recognize, and that marking could still > likely be easily removed. > It's more feasible than banning the creation of packages from a running system, that's true. The original solution doesn't seem so infeasible to me though.. I have a feeling this is more about an alternative bin format ;) > This still allows the social engineering attack. Someone can get a binpkg > created with quickpkg of someone else's baselayout and then remove the > marking that would make portage gripe. > Agreed. As a user, I'd much rather just be able to quickpkg whenever I choose, and know that the system will not allow sensitive files to be copied. Starting with /etc/shadow and the like is great by me, as I'm fairly sure there'll be a sensible plain-text config file I can edit by hand if I need to. If I were to allow such files to be copied, I'd like a warning. Yes I mess up sometimes, so what? I'm the user, it's expected ;p -- gentoo-dev@gentoo.org mailing list