Re: init system policy

To: Jonas Smedegaard <dr@jones.dk>
Cc: "debian-devel@lists.debian.org" <debian-devel@lists.debian.org>
Subject: Re: init system policy
From: Matthias Klumpp <matthias@tenstral.net>
Date: Thu, 20 Nov 2014 21:12:57 +0100
Message-id: <[🔎] CAKNHny_N20Kjy4rMK3ekkJRR8Nz2qNxEKKi3GRfCLdCOtX9UWQ@mail.gmail.com>
In-reply-to: <[🔎] 20141120164412.4676.28309@bastian.jones.dk>
References: <CAJS_LCXeSz1cv4q-2RdRFkB9q=JzeNZtd=1idPFzRxBL2gu7Dw@mail.gmail.com> <546B6926.9070603@Free.fr> <[🔎] 20141118163958.GC16989@smurf.noris.de> <[🔎] 546B77DD.1090004@43-1.org> <[🔎] 546B8114.7050409@free.fr> <[🔎] 546B83B2.3010103@43-1.org> <[🔎] 546DEBE7.7060500@free.fr> <[🔎] 20141120151251.4676.97080@bastian.jones.dk> <[🔎] CAKNHny_YoFgcKTOY1d0BqobqoG8cG0XXw9nBj-B56efwCDR=aw@mail.gmail.com> <[🔎] 20141120164412.4676.28309@bastian.jones.dk>

2014-11-20 17:44 GMT+01:00 Jonas Smedegaard <dr@jones.dk>:
> Quoting Matthias Klumpp (2014-11-20 17:15:50)
>> 2014-11-20 16:12 GMT+01:00 Jonas Smedegaard <dr@jones.dk>:
>> > Quoting Vincent Danjean (2014-11-20 14:25:59)
>> >>   Hi,
>> >>
>> >> On 18/11/2014 18:36, Ansgar Burchardt wrote:
>> >> > With systemd you can ship a default configuration in
>> >> > /lib/systemd/system and administrators can override specific options,
>> >> > for example:
>> >> >
>> >> > +---
>> >> > | [Unit]
>> >> > | Description=Some Helpful Description
>> >> > | Documentation=man:minidlda(1)
>> >> > |
>> >> > | [Service]
>> >> > | User=minidlda
>> >> > | ExecStart=/usr/sbin/minidldad -S
>> >> > +---[ /lib/systemd/system/minidlda.service ]
>> >> >
>> >> > Then an admin can override the entire file by writing his own
>> >> > /etc/systemd/system/minidlda.service or only override specific settings:
>> >> >
>> >> > +---
>> >> > | [Service]
>> >> > | User=some-other-user
>> >> > +---[ /etc/systemd/system/miniblda.service.d/user.conf ]
>> >>
>> >>   I did not know that. It is very interesting.
>> >>
>> >> But, is there a way to be notified at upgrade time that the system
>> >> service file has been modified when there is local (partial or full)
>> >> changes ?
>> >
>> > I was wondering the same.
>> At least for the systemd-case, you can easily notice changes using the
>> systemd-delta command:
>>  $> systemd-delta --diff
>> This will list all overrides and the differences in case something has
>> changed.
>
> Thanks.  Sounds like only a diff between system-provided and
> sysadmin-overrided config, however: That might help for the latter part
> of the question - notify only when system service file is overridden
> locally (by suppressing notification if systemd-deta is empty).
>
> How to do first part of the question - be notified with a diff between
> old versus new _effective_ config when a package update changes a system
> service file?
I don't now of any tool which does that yet - but it shouldn't be hard
to write one that does it (maybe we could even run that by default if
a package touches a vendor-supplied configuration in /lib).
It would just be comparing checksums before and after installation of
a package, and then point the sysadmin at the changed file.

-- 
Debian Developer | Freedesktop-Developer
I welcome VSRE emails. See http://vsre.info/

Reply to:

Follow-Ups:
- Re: init system policy
  - From: Philip Hands <phil@hands.com>

References:
- Re: init system policy
  - From: Matthias Urlichs <matthias@urlichs.de>
- Re: init system policy
  - From: Ansgar Burchardt <ansgar@43-1.org>
- Re: init system policy
  - From: Eric Valette <eric.valette@free.fr>
- Re: init system policy
  - From: Ansgar Burchardt <ansgar@43-1.org>
- Re: init system policy
  - From: Vincent Danjean <vdanjean.ml@free.fr>
- Re: init system policy
  - From: Jonas Smedegaard <dr@jones.dk>
- Re: init system policy
  - From: Matthias Klumpp <matthias@tenstral.net>
- Re: init system policy
  - From: Jonas Smedegaard <dr@jones.dk>

Prev by Date: Re: init system policy
Next by Date: Re: systemd, fstab, noauto and nofail
Previous by thread: Re: init system policy
Next by thread: Re: init system policy
Index(es):
- Date
- Thread