On Wed, Sep 21, 2005, Ralf S. Engelschall wrote: > On Wed, Sep 21, 2005, Andreas Schmidt wrote: > [...] > > but this leads to my questions: shouldn't the instance-manager-account > > be allowed to install new packages? otherwise i see no possiblity to > > make individual users their private openpkg instance. > > > > if this was an error of the tomcat-package, is there a way to check a > > package-installation to avoid the risk of a corrupted openpkg instance? > > or some "transactional"-mode? > > No, everything is ok. For building the management user is ok, but > for installation one always uses root. The only exception is in > intentionally non-privileged OpenPKG instances. There only the > management user exists, but OTOH there one inherently cannot use all > packages, of course.
Would it be possible to use the same user/group for all OpenPKG users/groups in such a scenario ? This would still not help with packages that need SUID root or SGID sys or so for some programs, though. (mk) -- Matthias Kurz; Fuldastr. 3; D-28199 Bremen; VOICE +49 421 53 600 47 >> Im prämotorischen Cortex kann jeder ein Held sein. (bdw) << ______________________________________________________________________ The OpenPKG Project www.openpkg.org User Communication List openpkg-users@openpkg.org
