tech-userlevel archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: /etc/daily fetch-pkg-vulnerabilities


> /etc/daily urges me to set fetch_pkg_vulnerabilities to YES.
> Suppose someone has set this to NO for a reason.
> Do we really want to ``remind'' people every single day?
> Even those ``You do not have $ME installed as your default browser. You
> surely want to correct this'' alerts usually feature some ``don't ask me
> again'' checkbox.
what is the preferred solution to this?
I see three possible solutions:
 * introduce another variable (daily.diff, manpage would follow)
 * deactivate this warning completely
 * just show a warning if fetch_pkg_vulnerabilities is *not* set, then you
   could deactivate the warning by setting it to NO. As checkyesno cannot do
   that, you would have to check the variable yourself.
   Is this ok, or should variables be separated from the script?
   See daily.diff.1 for an example (not tested).

Regards, Julian
Index: daily
RCS file: /cvsroot/src/etc/daily,v
retrieving revision 1.81
diff -u -r1.81 daily
--- daily       15 Feb 2012 23:30:11 -0000      1.81
+++ daily       20 Jul 2012 16:51:30 -0000
@@ -254,9 +254,11 @@
        if checkyesno fetch_pkg_vulnerabilities; then
                ( umask 022 && pkg_admin ${_compat_K_flag} \
                    fetch-pkg-vulnerabilities -u )
-       else
+       elif ! checkyesno fetch_pkg_vulnerabilities_nowarn; then
                echo "fetch_pkg_vulnerabilities is set to NO in daily.conf(5)."
                echo "You should set it to YES to enable vulnerability checks."
+               echo "You can also disable this warning by setting the variable"
+               echo "fetch_pkg_vulnerabilities_nowarn to YES."

Attachment: daily.diff.1
Description: Binary data

Attachment: signature.asc
Description: PGP signature

Home | Main Index | Thread Index | Old Index