Subject: Re: bin/3563
To: None <fair@NetBSD.ORG, current-users@NetBSD.ORG>
From: Michael C. Richardson <>
List: current-users
Date: 07/06/1998 10:30:36

>>>>> "fair" == fair  <fair@NetBSD.ORG> writes:

    fair> Synopsis: install causes make to fail

    fair> State-Changed-From-To: open-feedback
    fair> State-Changed-By: fair
    fair> State-Changed-When: Mon Jul 6 04:34:56 PDT 1998
    fair> State-Changed-Why: 
    fair> the whole point of specifying particular ownerships of files installed 
    fair> by install is to get the permissions right for system security and
    fair> integrity. I really don't think this is such a good idea.

  I suggest that you reread the PR. I addressed the reasons for this.
If you don't like it, please suggest something else.

  Not everyone is installing as root. 
  Install should not fail when it isn't running as root.

  If you insist that I run something like 
	"cd gnu; make DESTDIR=/my/big/disk/buildtree install"

  as root, then you cause me to NFS mounts with root permission in order
that I build a new tool chain to move from 1.2 to 1.3 (or 1.3 to 1.4). That
in itself is a security issue.
  Further, you want me to do "make all" as root? That is supposed to
be secure? HAH. I crucify people here that even type "make" as root.

  It is hard enough to track -current as it is. Please don't make it

  At least, this gives me a way to get around this via environment
variable. If you prefer, I will resubmit without the environment variable
and do patches to make sure that I can get the -Q into some variable
on the make command line.

   :!mcr!:            |  Sandelman Software Works Corporation, Ottawa, ON  
   Michael Richardson |	SSH IPsec: Secure, strong, international
 Personal: PGP key available.

Version: 2.6.3ia
Charset: latin1
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface