[Logcheck-devel] Re: [Logcheck-commits] CVS logcheck/debian
Todd Troxell
ttroxell at debian.org
Wed Sep 14 18:22:28 UTC 2005
On Wed, Sep 14, 2005 at 05:58:00PM +0200, maximilian attems wrote:
> On Sun, 29 May 2005, CVS User ttroxell wrote:
>
> > Update of /cvsroot/logcheck/logcheck/debian
> > In directory haydn:/tmp/cvs-serv9342/debian
> >
> > Modified Files:
> > changelog logcheck.postinst
> > Log Message:
> > Unfortunately this change breaks policy because we need to keep user's
> > existing group, owner, and permissions in tact, so I have to remove it.
> >
> > It's not too bad though because logcheck can still read the rulefiles.
> > It's just sloppy. The best solution proposed thus far was to get
> > logcheck user installed in Debian base.
>
> i'm repeatably beaten by that revert.
> do a simple: sudo find /etc/logcheck/ -gid 0
> and you won't be surprised. :-P
*nodnod*
> please name the paragraph in the policy you have in mind?
Sorry, I was making things up. It would appear that It's not disallowed by
policy. The original complaint is in this archived report[0].
> base-passwd states that packages should cope with dynamically allocated
> system users and groups.
> "packages should avoid requesting such ids"
Hmm. We can add a conditional chown to dh_installlogcheck.
[The condition being whether or not we have a logcheck user yet.]
It will also require yet another overwrite of all /etc/logcheck perms.
[0] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=287184;archive=yes
--
Todd Troxell
http://rapidpacket.com/~xtat
More information about the Logcheck-devel
mailing list