Subject: Re: bin/3563
To: None <fair@NetBSD.ORG, current-users@NetBSD.ORG>
From: Michael C. Richardson <email@example.com>
Date: 07/06/1998 10:30:36
-----BEGIN PGP SIGNED MESSAGE-----
>>>>> "fair" == fair <fair@NetBSD.ORG> writes:
fair> Synopsis: install causes make to fail
fair> State-Changed-From-To: open-feedback
fair> State-Changed-By: fair
fair> State-Changed-When: Mon Jul 6 04:34:56 PDT 1998
fair> the whole point of specifying particular ownerships of files installed
fair> by install is to get the permissions right for system security and
fair> integrity. I really don't think this is such a good idea.
I suggest that you reread the PR. I addressed the reasons for this.
If you don't like it, please suggest something else.
Not everyone is installing as root.
Install should not fail when it isn't running as root.
If you insist that I run something like
"cd gnu; make DESTDIR=/my/big/disk/buildtree install"
as root, then you cause me to NFS mounts with root permission in order
that I build a new tool chain to move from 1.2 to 1.3 (or 1.3 to 1.4). That
in itself is a security issue.
Further, you want me to do "make all" as root? That is supposed to
be secure? HAH. I crucify people here that even type "make" as root.
It is hard enough to track -current as it is. Please don't make it
At least, this gives me a way to get around this via environment
variable. If you prefer, I will resubmit without the environment variable
and do patches to make sure that I can get the -Q into some variable
on the make command line.
:!mcr!: | Sandelman Software Works Corporation, Ottawa, ON
Michael Richardson | SSH IPsec: http://www.ssh.fi/. Secure, strong, international
Personal: firstname.lastname@example.org. PGP key available.
-----BEGIN PGP SIGNATURE-----
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface
-----END PGP SIGNATURE-----