FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Redhat > Fedora Packaging

 
 
LinkBack Thread Tools
 
Old 03-24-2010, 10:45 AM
John Dennis
 
Default port opening and PATH modification in rpm spec file

On 03/24/2010 06:47 AM, Jon Stanley wrote:
> 2010/3/23<MGandra@diskeeper.com>:
>
>> 2. Need to open a port so that our program can use it to send and
>> receive data. This also should be done from RPM while installing.
>
> Keep in mind that in the Fedora buildsystem, there will be no network
> access allowed during the build process - this defeats the purpose of
> reproducible builds if you go grab bits during the build process. I
> also agree with Manuel, you do not want to mess with iptables during
> the install - the chances for breaking something are extremely high.

The general philosophy is that installing an RPM is about laying the
bits down on disk. Small modifications to system configuration are
permitted such as adding a necessary user id. However installing an RPM
should not in most cases start services or turn on features. Think about
the case where someone installs a whole bunch of RPM's just to have them
available (yes people do this) and it would be surprising to discover
their system was now highly modified running all sorts of things, their
firewall and other security features silently modified from their
expectation, that's not a good thing.

Instead it's better for a package to install a setup script and a README
which describes what someone needs to do to activate the features in the
package. This way modifying the system configuration is an active
explicit step performed by the person administering the system.

--
John Dennis <jdennis@redhat.com>

Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
--
packaging mailing list
packaging@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/packaging
 
Old 03-24-2010, 01:42 PM
Jon Ciesla
 
Default port opening and PATH modification in rpm spec file

John Dennis wrote:
> On 03/24/2010 06:47 AM, Jon Stanley wrote:
>
>> 2010/3/23<MGandra@diskeeper.com>:
>>
>>
>>> 2. Need to open a port so that our program can use it to send and
>>> receive data. This also should be done from RPM while installing.
>>>
>> Keep in mind that in the Fedora buildsystem, there will be no network
>> access allowed during the build process - this defeats the purpose of
>> reproducible builds if you go grab bits during the build process. I
>> also agree with Manuel, you do not want to mess with iptables during
>> the install - the chances for breaking something are extremely high.
>>
>
> The general philosophy is that installing an RPM is about laying the
> bits down on disk. Small modifications to system configuration are
> permitted such as adding a necessary user id. However installing an RPM
> should not in most cases start services or turn on features. Think about
> the case where someone installs a whole bunch of RPM's just to have them
> available (yes people do this) and it would be surprising to discover
> their system was now highly modified running all sorts of things, their
> firewall and other security features silently modified from their
> expectation, that's not a good thing.
>
> Instead it's better for a package to install a setup script and a README
> which describes what someone needs to do to activate the features in the
> package. This way modifying the system configuration is an active
> explicit step performed by the person administering the system.
>
>
Agreed, you can't possibly know if your iptables change will work with
my iptables setup, so you shouldn't try. Same rationale as why we don't
touch databases. Where is the database? What credentials do we use?
What database is even being used?

-J

--
in your fear, seek only peace
in your fear, seek only love

-d. bowie

--
packaging mailing list
packaging@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/packaging
 
Old 03-25-2010, 09:57 PM
Alexander Boström
 
Default port opening and PATH modification in rpm spec file

tis 2010-03-23 klockan 19:39 -0700 skrev MGandra@diskeeper.com:

> 1. Modify the %PATH variable and add my “/usr/bin/Test folder” to
> it. This should be done from RPM while installing. It should exist
> until we uninstall.

Why not put the executables directly in /usr/bin instead?

/Alexander



--
packaging mailing list
packaging@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/packaging
 

Thread Tools




All times are GMT. The time now is 06:47 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org