From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from <gentoo-user+bounces-68926-garchives=archives.gentoo.org@gentoo.org>) id 1IS7AB-0002We-Fd for garchives@archives.gentoo.org; Mon, 03 Sep 2007 08:20:03 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.14.0/8.14.0) with SMTP id l838CVuq002718; Mon, 3 Sep 2007 08:12:31 GMT Received: from qrypto.org (connectioncable-084.headoff.net [217.30.222.84] (may be forged)) by robin.gentoo.org (8.14.0/8.14.0) with ESMTP id l8388TRY030911 for <gentoo-user@lists.gentoo.org>; Mon, 3 Sep 2007 08:08:29 GMT Received: from localhost (unknown [192.168.0.2]) by qrypto.org (Postfix) with ESMTP id 687981B35FB for <gentoo-user@lists.gentoo.org>; Mon, 3 Sep 2007 11:07:30 +0300 (EEST) Date: Mon, 3 Sep 2007 11:10:54 +0300 From: Rumen Yotov <rumen@qrypto.org> To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: about permission setting for /var/tmp/portage/../work Message-ID: <20070903081054.GA23534@qrypto.org> Mail-Followup-To: gentoo-user@lists.gentoo.org References: <874picgvx2.fsf@zqbx.org> <20070903060900.GA25653@qrypto.org> <87zm04fch0.fsf@zqbx.org> Precedence: bulk List-Post: <mailto:gentoo-user@lists.gentoo.org> List-Help: <mailto:gentoo-user+help@gentoo.org> List-Unsubscribe: <mailto:gentoo-user+unsubscribe@gentoo.org> List-Subscribe: <mailto:gentoo-user+subscribe@gentoo.org> List-Id: Gentoo Linux mail <gentoo-user.gentoo.org> X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <87zm04fch0.fsf@zqbx.org> User-Agent: Mutt/1.5.16 (2007-06-09) X-Archives-Salt: 009f2b62-917b-40bb-9097-41b83d8ccf89 X-Archives-Hash: d648a638024c3bb5baea651010d8ab20 Hi, On (03/09/07 16:13) William Xu wrote: > Rumen Yotov <rumen@qrypto.org> writes: > > > May be because this directory is meant to be used by portage only. > > Since it's just a tmp dir, only allowing portage user to read seems too > strict. > May be 'yes' but it's kind of security measure - so while compiling if anything breaks you'll get an user shell not a root one (just guessing). BTW anybody knows if gpg-signing of sources/eclasses is getting ready ? > > IMHO that is so because of FEATURES="... userpriv ..." (please check > > the syntax). Same must be valid for /usr/portage/distfiles (FAETURES= > > " ... parallel-fetch userpriv usersandbox...") > > Do you mean that I should add `userpriv' etc to FEATURES flag? My > present setting is: > > ,---- > | FEATURES="cvs parallel-fetch ccache keepwork" > `---- > IIRC 'userpriv' uses portage uid to actually compile things, and root only during final merge. But please check again (paludis user ;-) > > Why you need user access to this work-dir. > > Yes, it's a big weird that debugging emacs requires me running the > executable. > > ,----[ /usr/share/emacs/23.0.0/etc/DEBUG ] > | ** When you debug Emacs with GDB, you should start it in the directory > | where the executable was made. That directory has a .gdbinit file > | that defines various "user-defined" commands for debugging Emacs. > | (These commands are described below under "Examining Lisp object > | values" and "Debugging Emacs Redisplay problems".) > `---- > Could do the compilation in src|work directory in your HOME dir. Or use step-by-step install: ebuild /path/to/ebuild unpack|compile|install|qmerge|clean check 'man ebuild' etc. > -- > William > > -- > gentoo-user@gentoo.org mailing list > HTH. Rumen -- gentoo-user@gentoo.org mailing list