[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Preferred way to do a chown on package's dirs ?

Le jeudi 07 août 2008 à 07:49 -0700, Justin Pryzby a écrit :

> If you change permissions in postinst, you should use
> dpkg-statoverride (see policy for an example).  This guarantees that
> (for regular files) the new permissions are in place even when the
> package is upgraded, and not just chown()d afterwards, with some
> window of time with the wrong permissions.

Hmmm... reading at the policy
(http://www.debian.org/doc/debian-policy/ch-files.html#s10.9.1) it seems
to me that it's a tool meant for system admins and not packagers... or
do I get it wrong ?

There's no such policy it seems, there...

If files are shipped as root:root and not yet belonging to the user,
during the install time-frame you describe, I'm not sure I can see a
risk there.

May I ask you to clarify your point ?

Best regards,
Olivier BERGER <olivier.berger@it-sudparis.eu>
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 1024D/6B829EEC
Ingénieur Recherche - Dept INF
Institut TELECOM, SudParis (http://www.it-sudparis.eu/), Evry (France)

Reply to: