[Pkg-cups-devel] Ubuntu patches for 1.2 cups
Martin-Éric Racine
q-funk at iki.fi
Wed Dec 7 11:40:08 UTC 2005
ti, 2005-11-29 kello 10:25 +0100, Martin Pitt kirjoitti:
> | diff -u cupsys-1.1.99.b1.r4841/debian/local/enable_browsing cupsys-1.1.99.b1.r4841/debian/local/enable_browsing
> | --- cupsys-1.1.99.b1.r4841/debian/local/enable_browsing
> | +++ cupsys-1.1.99.b1.r4841/debian/local/enable_browsing
> | @@ -13,7 +13,7 @@
> | # 1: enabled browsing
> | # Return 0 on success, or 1 on failure (prints error to stderr)
> |
> | -CONF=/etc/cups/cupsd-browsing.conf
> | +CONF=/etc/cups/cups.d/browse.conf
> | STATUS_SCRIPT=/usr/share/cups/browsing_status
> |
> | [ -x $STATUS_SCRIPT ] || {
> | @@ -54,7 +54,3 @@
> | if [ -x "/etc/init.d/cupsys" ]; then
> | - if [ -x /usr/sbin/invoke-rc.d ]; then
> | - invoke-rc.d cupsys restart || exit 0
> | - else
> | - /etc/init.d/cupsys restart || exit 0
> | - fi
> | + /etc/init.d/cupsys restart || exit 0
>
> Makes more sense for me to not use invoke-rc.d.
Isn't directly invoking init.d scripts against recommended practise?
Personally, I would stick with invoke-rc.d here.
> | --- cupsys-1.1.99.b1.r4841.orig/debian/patches/ubuntu-sanitize-conffile-handling.dpatch
> | +++ cupsys-1.1.99.b1.r4841/debian/patches/ubuntu-sanitize-conffile-handling.dpatch
> | @@ -0,0 +1,58 @@
> | +#! /bin/sh /usr/share/dpatch/dpatch-run
> | +## ubuntu-disable-conffile-chmod.dpatch by <martin.pitt at ubuntu.com>
> | +##
> | +## All lines beginning with `## DP:' are a description of the patch.
> | +## DP: No description.
> | +
> | + at DPATCH@
> | +diff -urNad cupsys-1.1.99.b1.r4841~/scheduler/conf.c cupsys-1.1.99.b1.r4841/scheduler/conf.c
> | +--- cupsys-1.1.99.b1.r4841~/scheduler/conf.c 2005-11-23 11:44:07.000000000 +0100
> | ++++ cupsys-1.1.99.b1.r4841/scheduler/conf.c 2005-11-23 11:45:40.000000000 +0100
> | +@@ -371,7 +371,7 @@
> | + * Find the default group (nobody)...
> | + */
> | +
> | +- group = getgrnam("nobody");
> | ++ group = getgrnam("root");
> | + endgrent();
> | +
> | + if (group != NULL)
> | +@@ -383,7 +383,7 @@
> | + * complement number...)
> | + */
> | +
> | +- Group = 65534;
> | ++ Group = 0;
> | + }
> | +
> | + /*
> | +@@ -517,7 +517,7 @@
> | +
> | + cupsdLogMessage(CUPSD_LOG_NOTICE,
> | + "Group and SystemGroup cannot use the same groups!");
> | +- cupsdLogMessage(CUPSD_LOG_INFO, "Resetting Group to \"nobody\"...");
> | ++ cupsdLogMessage(CUPSD_LOG_INFO, "Resetting Group to \"root\"...");
> | +
> | + group = getgrnam("nobody");
> | + endgrent();
> | +@@ -531,7 +531,7 @@
> | + * complement number...)
> | + */
> | +
> | +- Group = 65534;
> | ++ Group = 0;
> | + }
> | + }
> | + }
>
> So far: do not create config files with group nogroup/user nobody,
> this is evil. root is much better for that and more compliant with the
> Debian policy.
This appears in direct contradiction with Ubuntu's low-priviledge user
strategy. Additionally, Ubuntu discourages the utilization of dpatch.
--
Martin-Éric Racine
http://q-funk.iki.fi
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digitaalisesti allekirjoitettu viestin osa
Url : http://lists.alioth.debian.org/pipermail/pkg-cups-devel/attachments/20051207/d9c6e126/attachment-0001.pgp
More information about the Pkg-cups-devel
mailing list