Re: Writing to /etc/ from a "privileged" UI

To: debian-devel@lists.debian.org
Cc: 612918@bugs.debian.org
Subject: Re: Writing to /etc/ from a "privileged" UI
From: Marvin Renich <mrvn@renich.org>
Date: Mon, 9 May 2011 09:45:41 -0400
Message-id: <[🔎] 20110509134541.GB633@cleo.wdw>
In-reply-to: <[🔎] 20110509112003.3254a13b@local>
References: <4DC771AC.703010@scrawlstudios.com> <1304918280.f23BC38D1406.20467@mail.ua> <[🔎] 20110509093907.01a24e16@local> <[🔎] 20110509091253.GA7470@angband.pl> <[🔎] 20110509112003.3254a13b@local>

* David Paleino <dapal@debian.org> [110509 04:19]:
> On Mon, 9 May 2011 11:12:53 +0200, Adam Borowski wrote:
> 
> > /etc may include only _static_ configuration.  What you have is variable
> > state which belongs in /var.  It's no different from a database, or dpkg's
> > status data.
> 
> Static IPs, DNS servers and WEP/WPA keys for a given wireless network are
> "variable state"? Sorry, I disagree.
> 
> I already said that I have a patch not to save networks for which no
> configuration is made -- which is the "variable state" thing at the moment. The
> question was different :)

This isn't about whether the data saved in the config file is variable,
it is about whether the config file is variable.  Files in /etc should
only be modified when the sysadmin is doing what (s)he considers to be
"configuration", not when a user is running a program.

The specific data shown in the bug report is clearly variable "state"
information and not static configuration info, but even adding and
removing more permanent wireless access point info should not be done in
/etc during the normal, continuous operation of a daemon.

If I were designing the config structure, since each AP is a distinct
entity that doesn't depend on any other AP (maybe that should be essid,
not AP), I would have a .d directory where each essid had its own config
file.  There could be corresponding /etc/wicd/something.d and
/var/lib/wicd/something.d directories.  The admin could place files in
/etc that he didn't want users messing with.  Non-conflicting files in
/etc, /var/lib, and ~user/.wicd (or better, ~user/.config/wicd), would
be treated equally by wicd, with preference to ~user/.config/wicd then
/var/lib/wicd, then /etc/wicd for any conflicting entries.

Actually, one normal user should not be able to override the admin
defaults for another user, so if there is already an entry in /etc, wicd
should place any user change to that entry in ~user, but new,
non-conflicting entries should go in /var/lib.  Then, the order of
preference should be ~user, /etc, /var/lib.

Transient state information, like signal strength and quality should
_not_ go in these files, but rather in /var/run/wicd/ (soon to be
/run/wicd/).

...Marvin

Reply to:

Follow-Ups:
- Re: Writing to /etc/ from a "privileged" UI
  - From: David Paleino <dapal@debian.org>

References:
- Writing to /etc/ from a "privileged" UI
  - From: David Paleino <dapal@debian.org>
- Re: Writing to /etc/ from a "privileged" UI
  - From: Adam Borowski <kilobyte@angband.pl>
- Re: Writing to /etc/ from a "privileged" UI
  - From: David Paleino <dapal@debian.org>

Prev by Date: Re: Multiarch, policy and cross-compiler libraries for non-Debian architectures
Next by Date: Re: A concrete proposal for rolling implementation
Previous by thread: Re: Writing to /etc/ from a "privileged" UI
Next by thread: Re: Writing to /etc/ from a "privileged" UI
Index(es):
- Date
- Thread