Bug#311188: debian-edu-config release critical bug

To: Steffen Joeris <Steffen.Joeris@skolelinux.de>
Cc: 311188@bugs.debian.org, debian-release@lists.debian.org
Subject: Bug#311188: debian-edu-config release critical bug
From: Jonas Smedegaard <dr@jones.dk>
Date: Sat, 04 Nov 2006 13:51:45 +0100
Message-id: <[🔎] 454C8CE1.9090506@jones.dk>
Reply-to: Jonas Smedegaard <dr@jones.dk>, 311188@bugs.debian.org
In-reply-to: <[🔎] 200611032132.41906.Steffen.Joeris@skolelinux.de>
References: <[🔎] 200611032132.41906.Steffen.Joeris@skolelinux.de>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Steffen Joeris wrote:
> Hi
> 
> 
> I know that this is an old and long discussed bug, but please allow me to 
> raise the discussion again right now as I think that the issue is not 
> completely clear.
> 
> First of all the bug is called: "debian-edu-config: Messes "programmatically" 
> with conffiles of other packages"
> 
> The word programmatically also appears in the etch rc policy under point 3 
> (Configuration files), however I have to ask, because there is one exception. 
> It is allowed, if a user explecitely runs an editor.
> Well if someone installs the debian-edu-config package on plain debian, 
> *nothing* will happen at all, except that the cfengine scripts are installed, 
> but cfengine is not started by the maintainer scripts.
> Therefore the user has to explicetely run the cfengine command to activate the 
> scripts and therefore configure the system, which I would call "running an 
> editor scpifically" .
> Of course debian-edu works out of the box and this command is started by the 
> debian-edu-install-udeb package (by its finish-install.d part in particular).
> This IMHO means that there is no RC bug in debian-edu-config about messing up 
> with other packages conffiles.
> 
> What do you think?

What happens is then a chain reaciton leading to an editor _implicitly_
messing with the cinfiguration files. This is not what policy permits,
and I find it sane for policy to not allow this.

Please try take a look at this from a non-"we want everything automated"
standpoint, and see if you don't agree with me: The issue here is
avoiding surprises for the local admin. It would be a surprise to me if
a core functionality of the Debian packaging system broke due to
enabling CFengine using purely Debian CFengine scripts.

I believe this bug should be left open until all configuration that
Debian-EDU wants different than the default is changeable in a way
supported by the packages themselves, rather than from Debian-EDU
overriding.

Until then, I believe it best for Debian-EDU to either instruct the
local admin to explicitly do the changes necessary but not allowed by
Debian policy, or to distribute Debian-EDU as a minor fork of Debian
with the policy-breaking behaviour enabled.

Regards,

 - Jonas

- --
* Jonas Smedegaard - idealist og Internet-arkitekt
* Tlf.: +45 40843136  Website: http://dr.jones.dk/

 - Enden er nær: http://www.shibumi.org/eoti.htm
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFTIzhn7DbMsAkQLgRAp7eAJ98j2QAwfhFgGrI/b3K6YvXbPv3EACdGOLY
LK+oqF2cb1txC2C8UePOv0o=
=W3JO
-----END PGP SIGNATURE-----

Reply to:

References:
- Bug#311188: debian-edu-config release critical bug
  - From: Steffen Joeris <Steffen.Joeris@skolelinux.de>

Prev by Date: Bug#311188: debian-edu-config release critical bug
Next by Date: RFS: libauthen-simple-perl
Previous by thread: Bug#311188: debian-edu-config release critical bug
Next by thread: Re: Q3: S-ATA on DebianEdu Sarge
Index(es):
- Date
- Thread