From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 10800 invoked from network); 29 Oct 2004 09:55:38 +0000 Received: from smtp.gentoo.org (156.56.111.197) by lists.gentoo.org with AES256-SHA encrypted SMTP; 29 Oct 2004 09:55:38 +0000 Received: from lists.gentoo.org ([156.56.111.196] helo=parrot.gentoo.org) by smtp.gentoo.org with esmtp (Exim 4.41) id 1CNTTr-0006rB-CN for arch-gentoo-portage-dev@lists.gentoo.org; Fri, 29 Oct 2004 09:55:35 +0000 Received: (qmail 22035 invoked by uid 89); 29 Oct 2004 09:55:34 +0000 Mailing-List: contact gentoo-portage-dev-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail Reply-To: gentoo-portage-dev@lists.gentoo.org X-BeenThere: gentoo-portage-dev@gentoo.org Received: (qmail 17067 invoked from network); 29 Oct 2004 09:55:34 +0000 From: Paul de Vrieze To: gentoo-portage-dev@lists.gentoo.org Date: Fri, 29 Oct 2004 11:55:26 +0200 User-Agent: KMail/1.7 References: <1098993757.9091.107.camel@www.toruslaptop.com> <200410281552.17634.anthony@ectrolinux.com> <200410290031.08751.stuart@gentoo.org> In-Reply-To: <200410290031.08751.stuart@gentoo.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart2336234.EN2iNfB3k5"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200410291155.32852.pauldv@gentoo.org> Subject: Re: [gentoo-portage-dev] webapp-config and webapps X-Archives-Salt: 1c6f6fe0-1ec4-4c4f-a33a-e71526d8f48f X-Archives-Hash: 799b035671cb65a22c2ae4f8eafe9efa --nextPart2336234.EN2iNfB3k5 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 29 October 2004 01:31, Stuart Herbert wrote: > It's not possible to support non-privileged users running webapp-config > with the default Apache 2 MPM, as these users can't perform the chown > operations that the tool needs to do. We could provide a setuid-safe > script to do this, but that's not top of my todo list. Let's say how I would do this if I were an administrator for such a server.= =20 Well I'd take the easy road of doing the following: =2D Make a webpage that users/customers can select the desired webapps for = their virtual host, including the version. With a big-fat warning that autoupdating by the app itself doesn't work. =2D Have that webpage append to a pending-transformation list. =2D Have a root cronjob that parses (strictly) the pending-transformation l= ist and runs webapp-config for eacht of those transformations. Then the pendi= ng list is flushed. As the administrator I now only need to select the offered apps, the rest i= s=20 left to the users. > The problem with each web-based package providing its own package > management is that you're left with widely varying quality. You also have > the problem that it's harder to lock down a site and prevent unauthorised > change. And these tools don't work too well on secured and/or disconnect= ed > intranets (and these are surprising common in the public sector at least)= =2E=20 > Tools that extend Portage - tools that allow for disconnected upgrades - > still have their advantages :) I still consider it bad design. Even though I understand the reasons. Paul =2D-=20 Paul de Vrieze Gentoo Developer Mail: pauldv@gentoo.org Homepage: http://www.devrieze.net --nextPart2336234.EN2iNfB3k5 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (GNU/Linux) iD8DBQBBghOUbKx5DBjWFdsRAhg3AKCYFOYDEF6J6q9MLUH4twJsyMVepgCdEqnM VhKRD0qlhHX2X3b+lkOjDU0= =Yiun -----END PGP SIGNATURE----- --nextPart2336234.EN2iNfB3k5--