Re: Package automation in /etc/daily

To: "tech-userlevel%NetBSD.org@localhost" <tech-userlevel%netbsd.org@localhost>
Subject: Re: Package automation in /etc/daily
From: Joerg Sonnenberger <joerg%britannica.bec.de@localhost>
Date: Sun, 17 Jan 2010 17:32:54 +0100

On Sun, Jan 17, 2010 at 04:00:48PM +0000, Julio Merino wrote:
>      check_packages             Checks the digital signature of all files
>                                 installed by packages against the expected
>                                 values stored in the packages database.

Doesn't have practical value to prevent "attacks" -- MD5 is simply too
weak.

>      fetch_pkg_vulnerabilities  Refreshes the local database of package vul-
>                                 nerabilities.

Must be done by default, should be done with -u.

>      pkg_dbdir  Location of the packages database.  If unset, defaults to the
>                 value of the PKG_DBDIR environment variable (typically set
>                 from /etc/profile) or to /var/db/pkg.

I don't think support for non-default locations should be included...
E.g. use whatever pkg_admin is configured for.

Joerg

Follow-Ups:
- Re: Package automation in /etc/daily
  - From: Julio Merino

References:
- Package automation in /etc/daily
  - From: Julio Merino

Prev by Date: Package automation in /etc/daily
Next by Date: Re: Package automation in /etc/daily
Previous by Thread: Package automation in /etc/daily
Next by Thread: Re: Package automation in /etc/daily
Indexes:

Home | Main Index | Thread Index | Old Index