[packagers] File ownership!
Morten Kjeldgaard
mok at bioxray.dk
Mon Nov 6 11:44:50 CET 2006
In the "good old days" when I started working with UNIX, most
executables in /bin and /usr/bin were owned by user "bin". Only in the
case that a program specifically needed root access, for example
/bin/passwd, it would be owned by user 'root'. The advantage of this
approach is that a programming error, buffer overrun or the like in some
random program would not let people obtain root access. This is the
reason that every /etc/password file on every *NIX machine on the
planet contains an entry for user bin.
I think this is a good practice, and I have employed it in my packages
ever since when. All it takes is to use the %defattr(-,bin,bin) in the
%files section.
I would like to suggest that RPMforge adopts this convention as well.
Cheers,
Morten
--
Morten Kjeldgaard, Asc. professor, Ph.D.
Department of Molecular Biology, Aarhus University
Gustav Wieds Vej 10 C, DK-8000 Aarhus C, Denmark
Lab +45 89425026 * Mobile +45 51860147 * Fax +45 86123178
Home +45 86188180 * http://www.bioxray.dk/~mok
More information about the packagers
mailing list