Bug#945275: debian-policy: [9.1.2] deprecated `staff` group special case

To: submit@bugs.debian.org
Subject: Bug#945275: debian-policy: [9.1.2] deprecated `staff` group special case
From: Ansgar Burchardt <ansgar@43-1.org>
Date: Fri, 22 Nov 2019 10:24:48 +0100
Message-id: <[🔎] 87v9rcgt5r.fsf@43-1.org>
Reply-to: Ansgar Burchardt <ansgar@43-1.org>, 945275@bugs.debian.org

Package: debian-policy

9.1.2 recommends the following to create a directory under /usr/local:

```
if [ ! -e /usr/local/share/emacs ]; then
    if mkdir /usr/local/share/emacs 2>/dev/null; then
        if test -e /etc/staff-group-for-usr-local ; then
            if chown root:staff /usr/local/share/emacs; then
                chmod 2775 /usr/local/share/emacs || true
            fi
        elif chown root:root /usr/local/share/emacs; then
            chmod 0755 /usr/local/share/emacs || true
        fi
    fi
fi
```

That is way too complicated and has race conditions (yes, I know staff
is practically almost root).

I suggest to have packages just create the directory with
```
mkdir -p /usr/local/share/emacs || true
```

If people want to have /usr/local writable by different users than root,
they should use POSIX ACLs or similar means.  This would also set
correct permissions for directories that aren't created as above, but
by, for example, a call to `make install`.

The `/etc/staff-group-for-usr-local` flag file could also go away then.

Ansgar

Reply to:

Prev by Date: Bug#945269: debian-policy: packages should use tmpfiles.d(5) to create directories below /var
Next by Date: Bug#941803: debian-policy: dependencies on font packages
Previous by thread: Bug#945269: debian-policy: packages should use tmpfiles.d(5) to create directories below /var
Next by thread: Bug#941803: debian-policy: dependencies on font packages
Index(es):
- Date
- Thread