Re: ca-certificates symlinks out of /etc

To: debian-devel@lists.debian.org
Subject: Re: ca-certificates symlinks out of /etc
From: Steve Langasek <vorlon@debian.org>
Date: Tue, 31 Oct 2006 12:19:04 -0800
Message-id: <[🔎] 20061031201904.GB6315@mauritius.dodds.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20061031181045.GA20364@piper.madduck.net>
References: <[🔎] 20061031181045.GA20364@piper.madduck.net>

On Tue, Oct 31, 2006 at 07:10:45PM +0100, martin f krafft wrote:
> The recent ca-certificates upgrade overwrote this "configuration"
> simply because my /bin/cat call actually changed a file in
> /usr/share, where changes by the admin are not preserved. Yet, due
> to the links in /etc/ssl/certs, the admin is given the impression
> that these are configuration files and can thus be edited according
> to Debian's holy conffile handling policy.

> I consider this a bug, and even release-critical, and would say that
> ca-certificates should use ucf to maintain the certificates in
> /etc/ssl/certs. Arguments against that are to keep /etc small, but
> at 444k I don't see ca-certificates being a culprit.

Not release critical.  You're welcome to debate whether it's a bug to ever
use symlinks in /etc, but Alex is right -- the historical understanding of
"configuration" here is the symlinks, not the targets.

-- 
Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
vorlon@debian.org                                   http://www.debian.org/

Reply to:

References:
- ca-certificates symlinks out of /etc
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Re: ca-certificates symlinks out of /etc
Next by Date: /etc/localtime (was: Re: ca-certificates symlinks out of /etc)
Previous by thread: Re: ca-certificates symlinks out of /etc
Next by thread: Bug#53121: 5% Qu0 te for pat reuter
Index(es):
- Date
- Thread