Summary: | QA: reverse policy on subdirectories of /var/cache | ||
---|---|---|---|
Product: | Quality Assurance | Reporter: | Michael Orlitzky <mjo> |
Component: | Policies | Assignee: | Gentoo Quality Assurance Team <qa> |
Status: | CONFIRMED --- | ||
Severity: | normal | CC: | flow, israel.lugo |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Michael Orlitzky
2019-08-22 17:49:33 UTC
Ping. This just came up again with sys-apps/mandb. Right now it's relying on a tmpfiles entry to re-create /var/cache/man at boot time with the correct permissions, because it installs a cron job that drops permissions and needs to be able to write there. The only way this works on a non-systemd system is through the unconscionably-insecure opentmpfiles, which will never be fixed, for multiple reasons that I won't get into to avoid being reported to comrel. It would simplify things greatly, improve security, and make me happy to be able to say "keepdir /var/cache/man" once in the ebuild and be done with it. I think doing so is allowed by the FHS and is generally the smart approach (see my OP). |