-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sat, 01 Feb 2003 23:02, Ashley Yakeley wrote:
> 1. Have fink build as non-root. However, to do this properly I think > this requires the use of fakeroot. If anyone wants to port fakeroot, > they'd be doing the fink community an enormous favour. You're right, I would love fakeroot, but the porting is nontrivial. At least when I looked at it (6 months ag), it depended on some very new features of (was it glibc? or similar) and the porting effort for that had only just started. <shameless plug> However, running fink without root really isn't that hard. There is a patch on sourceforge that does it (I think the patch is somewhat out of date, mail me if you'd like a newer one). I personally think the standard way of running fink should be to add a new user to the system (called fink) and install all software as them, so as to not risk root if setuid software is compromised. Almost all unix software copes with being compiled and installed by non-root, even when the software that requires root to run. The number one problem I have is with fink maintainers, who happily put chowns in the .info file, forgetting it prevents installation by non root. </shameless plug> > The point is not to be secure against malicious packages, but to be > safer against accidental errors. Agreed, being secure against malicious packages is near impossible, so shouldn't really be attempted. Corrin -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+PDhBi5A0ZsG8x8cRAgeRAJ9FROUiyfcdl9YRvW05RwX43xJmjACggOgc B6pA/K4QRJeVUyF2p8pfT5s= =4pTd -----END PGP SIGNATURE----- ------------------------------------------------------- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com _______________________________________________ Fink-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/fink-devel
