Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 126108

Summary: upgrading to dev-db/firebird-1.5.3 security.fdb is in etc-update
Product: Gentoo Linux Reporter: marc guillaume <marc>
Component: Current packagesAssignee: Karol Wojtaszek (RETIRED) <sekretarz>
Status: RESOLVED INVALID    
Severity: normal CC: Florian.Steinel, wltjr
Priority: High    
Version: 2005.1   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---

Description marc guillaume 2006-03-13 20:52:12 UTC 
I don't know if it's a bug, but it can be a problem.

After upgrading firbird database, the file /etc/firebird/security.fdb was proposed for change in etc-update. It is a binarie file and the diff in etc-update can't permit to see any significant change. As when I upgrade for X for exemple, I accepted the new binarie file, without knowing exactly what it was. The problem is that this file contains the crypted passwords for database access, and is handled with the /opt/firebird/bin/gsec command. Replacing this file set the database in is default status, with a default password. 

It seems that this file should'nt be in etc-update because it is not exactly a configuration file. Only the database administrator have to change it, not the system administrator during an update.
Comment 1 Florian Steinel 2006-11-22 05:18:26 UTC 
The other option is not to move the file, but then it get overritten without further inquiry with the next update.
Comment 2 William L. Thomson Jr. (RETIRED) gentoo-dev 2007-05-12 03:00:03 UTC 
I don't consider this a bug. It's a core file, granted it's a db and variable. It's storing passwords and the type of stuff that can be found in etc, IMHO. I believe it's best for etc-update to catch that something wants to overwrite that file. So passwords on a server don't just disappear, to be later replaced by a backup if available. Closing bug, thanks for reporting.